Release v4.0.2 - OAuth 2.0, DCR, and Authless Authentication

alokemajumder · alokemajumder · commit d116cfc0e2f9 · 2025-11-28T22:57:59.000+05:30
## What's New

### Authentication Modes
- **OAuth 2.0 with DCR**: Full OAuth 2.0 implementation with Dynamic Client Registration
  - Claude Desktop pre-registered as OAuth client
  - Automatic token refresh support
  - PKCE support for enhanced security
- **Bearer Token**: JWT-based authentication (default)
- **Authless Mode**: No authentication for development/testing

### Bug Fixes
- Fixed API key length validation (49 chars instead of 50)
- Added python-multipart dependency for OAuth form data

### Configuration
- New `AUTH_MODE` setting: oauth, bearer, or none
- New `OAUTH_ENABLE_DCR` setting for Dynamic Client Registration
- OAuth discovery endpoint at /.well-known/oauth-authorization-server

### Endpoints
- `/oauth/authorize` - Authorization endpoint
- `/oauth/token` - Token exchange endpoint
- `/oauth/register` - Dynamic client registration (when enabled)

All 15 end-to-end tests pass.
diff --git a/Dockerfile b/Dockerfile
@@ -5,7 +5,7 @@
 
 ARG PYTHON_VERSION=3.13
 ARG BUILD_DATE
-ARG VERSION=4.0.1
+ARG VERSION=4.0.2
 
 # Stage 1: Build dependencies
 FROM python:${PYTHON_VERSION}-alpine AS builder
diff --git a/README.md b/README.md
@@ -1,4 +1,4 @@
-# Wazuh MCP Remote Server v4.0.1
+# Wazuh MCP Remote Server v4.0.2
 
 
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
diff --git a/compose.yml b/compose.yml
@@ -13,10 +13,10 @@ services:
       args:
         BUILD_DATE: ${BUILD_DATE}
         PYTHON_VERSION: ${PYTHON_VERSION:-3.13}
-        VERSION: ${VERSION:-4.0.1}
+        VERSION: ${VERSION:-4.0.2}
       target: production
 
-    image: wazuh-mcp-remote-server:${VERSION:-4.0.1}
+    image: wazuh-mcp-remote-server:${VERSION:-4.0.2}
     container_name: wazuh-mcp-remote-server
     hostname: wazuh-mcp-remote-server
     
diff --git a/src/wazuh_mcp_server/server.py b/src/wazuh_mcp_server/server.py
@@ -265,7 +265,7 @@ async def get_or_create_session(session_id: Optional[str], origin: Optional[str]
 app = FastAPI(
     title="Wazuh MCP Server",
     description="MCP-compliant remote server for Wazuh SIEM integration. Supports Streamable HTTP, SSE, OAuth, and authless modes.",
-    version="4.0.1",
+    version="4.0.2",
     docs_url="/docs",
     openapi_url="/openapi.json"
 )

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-# Wazuh MCP Remote Server v4.0.1`
	`1`	`+# Wazuh MCP Remote Server v4.0.2`
`2`	`2`
`3`	`3`
`4`	`4`	`[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)`
Original file line number	Diff line number	Diff line change
`@@ -265,7 +265,7 @@ async def get_or_create_session(session_id: Optional[str], origin: Optional[str]`
`265`	`265`	`app = FastAPI(`
`266`	`266`	`title="Wazuh MCP Server",`
`267`	`267`	`description="MCP-compliant remote server for Wazuh SIEM integration. Supports Streamable HTTP, SSE, OAuth, and authless modes.",`
`268`		`- version="4.0.1",`
	`268`	`+ version="4.0.2",`
`269`	`269`	`docs_url="/docs",`
`270`	`270`	`openapi_url="/openapi.json"`
`271`	`271`	`)`