feat(headers): unify delete syntax to JSON Merge Patch + add CLI patch

User feedback on the previous round: REST PATCH had two ways to delete
a key (`headers_remove: ["X"]` array vs MCP tool's `{"X": null}`). The
MCP tool's syntax is cleaner and is a documented standard (RFC 7396).
Unify on it and add a CLI command so all three interfaces — MCP, REST,
CLI — behave the same way.

Backend (internal/httpapi/server.go):
- AddServerRequest.Headers and .Env switch from `map[string]string` to
  `map[string]*string`. Go's encoding/json then maps a missing key to
  "no entry", a present non-null value to a non-nil `*string`, and a
  present `null` to a nil pointer. The merge loop reads each entry: nil
  pointer = delete, non-nil = upsert.
- Drop the `headers_remove` / `env_remove` array fields. A single `null`
  in the same map carries the same intent and aligns with the MCP tool.
- POST (add) ignores nil entries via the new flattenNullableMap helper;
  `null` on create has no meaning.
- redactServerHeaders / SSE redaction unchanged.

Tests (internal/httpapi/patch_server_test.go):
- Rewrite the previous `*_remove`-style tests to use literal JSON null
  payloads via `json.RawMessage`. The raw-byte approach is independent
  of any Go marshaling quirks that could collapse `null` values.
- New TestHandlePatchServer_HeadersEmptyStringSetsNotDeletes pins the
  distinction between `""` (set to empty) and `null` (delete) — JSON
  Merge Patch is explicit about it and a future refactor that
  "helpfully" collapses one to the other would silently break.
- Total: 7 tests, all green.

Web UI (frontend/src/views/ServerDetail.vue):
- deleteKv now sends `{headers: {key: null}}` instead of the array
  form. JSON.stringify emits `null` literally, no special handling.
- Drop the `scopeRemoveKey` helper (no longer needed).

macOS Swift (native/macos/MCPProxy/MCPProxy/Views/ServerDetailView.swift):
- diffKVMap returns a single `[String: Any]` patch dict where deleted
  keys map to `NSNull()` instead of returning the previous
  `(set, remove)` tuple.
- saveEdits writes the patch as `updates["headers"] = patch` directly;
  no `headers_remove` companion field anymore.
- performConvertToSecret sends a single-key patch
  `{field: {key: ref}}` instead of building the full map — minimal
  wire payload, never round-trips the redacted Authorization.
- The trap was real and surprising: Swift's default `JSONEncoder` on
  `[String: String?]` SILENTLY DROPS nil entries from the JSON output.
  Using `[String: Any]` with `NSNull()` + `JSONSerialization` (the
  encoder our APIClient already uses) renders `null` correctly.

Swift unit test (native/macos/MCPProxy/MCPProxyTests/MergePatchEncodingTests.swift):
- 4 tests pinning the encoding contract:
  1. NSNull encodes as literal `null` via JSONSerialization.
  2. A delete-only patch round-trips through JSON and the value
     parses back as NSNull (not "", not absent).
  3. The wrong path — `[String: String?]` + default `JSONEncoder` —
     does silently drop nils. Documented as a poison-pill test so a
     future refactor that "simplifies" to it has to explicitly delete
     this test and read the comment first.
  4. Empty string still encodes as `""` and explicit null as `null`
     — the JSON Merge Patch set-vs-delete distinction is preserved.

CLI (cmd/mcpproxy/upstream_cmd.go + internal/cliclient/client.go):
- New `mcpproxy upstream patch <name>` subcommand with flags:
    --header K=V         upsert (repeatable)
    --header-remove K    delete (repeatable)
    --env K=V            upsert (repeatable)
    --env-remove K       delete (repeatable)
- New cliclient.PatchServer(name, body) sends raw JSON to PATCH
  /api/v1/servers/{name}. Body shape is the same JSON Merge Patch the
  Web UI and macOS tray send.
- Closes the CLI gap I called out in the boundaries-matrix summary —
  REST, MCP, and CLI now all support both write and delete on headers
  / env with the same semantics.

Live end-to-end verification:

  $ mcpproxy upstream patch synapbus --header "X-Cli-Test: hello-from-cli"
  ✅ Patched synapbus: 1 header(s) set
  → on disk: { Authorization (real Bearer), X-Cli-Test }  (Auth preserved)

  $ mcpproxy upstream patch synapbus --header-remove X-Cli-Test
  ✅ Patched synapbus: 1 header(s) removed
  → on disk: { Authorization (real Bearer) }              (Auth preserved)

  $ mcpproxy upstream patch synapbus --header "X-Foo: v" --header-remove X-Foo
  Error: --header and --header-remove for "X-Foo" conflict; pick one

  Web UI: "+ Add header" → X-WebUI-Test=from-browser → Save
  → on disk: { Authorization (real Bearer), X-WebUI-Test }

  macOS tray: Edit → textarea pre-populated with
  "Authorization=***REDACTED***" → user appends "X-Mac-Test=hello-from-mac"
  → Save
  → on disk: { Authorization (REAL Bearer, preserved!), X-Mac-Test }

PR #463 subagent review confirmed the unrelated "disable tool" pattern
is a different domain (reversible state in BBolt vs destructive
mutation in mcp_config.json) and should not be unified with this work.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

Author: claude

cmd/mcpproxy/upstream_cmd.go

@@ -121,6 +121,39 @@ Examples:
 		RunE: runUpstreamAddJSON,
 	}
 
+	upstreamPatchCmd = &cobra.Command{
+		Use:   "patch <name>",
+		Short: "Update headers / env on an existing upstream server",
+		Long: `Update HTTP headers and stdio environment variables on an existing upstream server.
+
+The PATCH endpoint uses JSON Merge Patch semantics: keys you specify are
+upserted, keys you delete with -remove flags are explicitly removed, and
+every other key on the stored config is preserved. So you can safely
+rotate a single header without seeing or touching the rest — including
+sensitive values the backend redacts from list / inspect responses.
+
+Examples:
+  # rotate the Authorization header on the synapbus server
+  mcpproxy upstream patch synapbus --header "Authorization: Bearer new-token"
+
+  # add a custom header without disturbing existing ones
+  mcpproxy upstream patch synapbus --header "X-Trace: on"
+
+  # remove a header
+  mcpproxy upstream patch synapbus --header-remove "X-Stale"
+
+  # set + remove in a single round-trip
+  mcpproxy upstream patch synapbus --header "X-New: v" --header-remove "X-Old"
+
+  # update env vars on a stdio server
+  mcpproxy upstream patch obsidian-pilot --env "LOG_LEVEL=debug" --env-remove "OLD_VAR"
+
+Flags are repeatable. The corresponding null in the JSON Merge Patch body
+is constructed automatically — you never have to think about wire format.`,
+		Args: cobra.ExactArgs(1),
+		RunE: runUpstreamPatch,
+	}
+
 	upstreamInspectCmd = &cobra.Command{
 		Use:   "inspect <server-name>",
 		Short: "Inspect tool approval status for a server",
@@ -248,6 +281,12 @@ Examples:
 	// Inspect command flags
 	upstreamInspectTool string
 
+	// Patch command flags
+	upstreamPatchHeaders      []string
+	upstreamPatchHeaderRemove []string
+	upstreamPatchEnvs         []string
+	upstreamPatchEnvRemove    []string
+
 	// Import command flags
 	upstreamImportServer       string
 	upstreamImportFormat       string
@@ -272,6 +311,7 @@ func init() {
 	upstreamCmd.AddCommand(upstreamAddCmd)
 	upstreamCmd.AddCommand(upstreamRemoveCmd)
 	upstreamCmd.AddCommand(upstreamAddJSONCmd)
+	upstreamCmd.AddCommand(upstreamPatchCmd)
 	upstreamCmd.AddCommand(upstreamInspectCmd)
 	upstreamCmd.AddCommand(upstreamApproveCmd)
 	upstreamCmd.AddCommand(upstreamImportCmd)
@@ -316,6 +356,12 @@ func init() {
 	upstreamRemoveCmd.Flags().BoolVarP(&upstreamRemoveYes, "y", "y", false, "Skip confirmation prompt (short form)")
 	upstreamRemoveCmd.Flags().BoolVar(&upstreamRemoveIfExists, "if-exists", false, "Don't error if server doesn't exist")
 
+	// Patch command flags
+	upstreamPatchCmd.Flags().StringArrayVar(&upstreamPatchHeaders, "header", nil, "HTTP header to upsert in 'Name: value' format (repeatable)")
+	upstreamPatchCmd.Flags().StringArrayVar(&upstreamPatchHeaderRemove, "header-remove", nil, "HTTP header name to delete (repeatable)")
+	upstreamPatchCmd.Flags().StringArrayVar(&upstreamPatchEnvs, "env", nil, "Environment variable to upsert in KEY=value format (repeatable)")
+	upstreamPatchCmd.Flags().StringArrayVar(&upstreamPatchEnvRemove, "env-remove", nil, "Environment variable name to delete (repeatable)")
+
 	// Inspect command flags
 	upstreamInspectCmd.Flags().StringVar(&upstreamInspectTool, "tool", "", "Show details for a specific tool")
 
@@ -2006,3 +2052,125 @@ func applyImportedServersConfigMode(imported []*configimport.ImportedServer, glo
 
 	return nil
 }
+
+// runUpstreamPatch handles the 'upstream patch' command. Translates the
+// repeatable --header / --env / --header-remove / --env-remove flags into
+// a JSON Merge Patch (RFC 7396) body and POSTs it to PATCH /api/v1/servers/{name}.
+//
+// Upserts encode as {"headers": {"X-Foo": "bar"}}; deletes encode as
+// {"headers": {"X-Stale": null}}. Both shapes go through encoding/json
+// (`map[string]*string`) where a nil pointer renders as the literal
+// `null` token — verified by the backend's PATCH tests.
+func runUpstreamPatch(_ *cobra.Command, args []string) error {
+	serverName := strings.TrimSpace(args[0])
+	if serverName == "" {
+		return fmt.Errorf("server name is required")
+	}
+
+	if len(upstreamPatchHeaders) == 0 && len(upstreamPatchHeaderRemove) == 0 &&
+		len(upstreamPatchEnvs) == 0 && len(upstreamPatchEnvRemove) == 0 {
+		return fmt.Errorf("at least one of --header / --header-remove / --env / --env-remove must be specified")
+	}
+
+	headers := map[string]*string{}
+	for _, h := range upstreamPatchHeaders {
+		parts := strings.SplitN(h, ":", 2)
+		if len(parts) != 2 {
+			return fmt.Errorf("invalid --header format: %q (expected 'Name: value')", h)
+		}
+		key := strings.TrimSpace(parts[0])
+		val := strings.TrimSpace(parts[1])
+		if key == "" {
+			return fmt.Errorf("invalid --header: empty header name in %q", h)
+		}
+		headers[key] = &val
+	}
+	for _, k := range upstreamPatchHeaderRemove {
+		key := strings.TrimSpace(k)
+		if key == "" {
+			return fmt.Errorf("invalid --header-remove: empty name")
+		}
+		if _, dupe := headers[key]; dupe {
+			return fmt.Errorf("--header and --header-remove for %q conflict; pick one", key)
+		}
+		headers[key] = nil // JSON Merge Patch: null = delete
+	}
+
+	envs := map[string]*string{}
+	for _, e := range upstreamPatchEnvs {
+		parts := strings.SplitN(e, "=", 2)
+		if len(parts) != 2 {
+			return fmt.Errorf("invalid --env format: %q (expected 'KEY=value')", e)
+		}
+		key := strings.TrimSpace(parts[0])
+		val := parts[1]
+		if key == "" {
+			return fmt.Errorf("invalid --env: empty key in %q", e)
+		}
+		envs[key] = &val
+	}
+	for _, k := range upstreamPatchEnvRemove {
+		key := strings.TrimSpace(k)
+		if key == "" {
+			return fmt.Errorf("invalid --env-remove: empty name")
+		}
+		if _, dupe := envs[key]; dupe {
+			return fmt.Errorf("--env and --env-remove for %q conflict; pick one", key)
+		}
+		envs[key] = nil
+	}
+
+	body := map[string]interface{}{}
+	if len(headers) > 0 {
+		body["headers"] = headers
+	}
+	if len(envs) > 0 {
+		body["env"] = envs
+	}
+
+	bodyBytes, err := json.Marshal(body)
+	if err != nil {
+		return fmt.Errorf("failed to marshal patch body: %w", err)
+	}
+
+	ctx, cancel := context.WithTimeout(reqcontext.WithMetadata(context.Background(), reqcontext.SourceCLI), 15*time.Second)
+	defer cancel()
+
+	globalConfig, err := loadUpstreamConfig()
+	if err != nil {
+		return fmt.Errorf("failed to load config: %w", err)
+	}
+	if !shouldUseUpstreamDaemon(globalConfig.DataDir) {
+		return fmt.Errorf("mcpproxy daemon is not running — start it with `mcpproxy serve` first.\n\nThe `patch` subcommand requires a live backend so configuration changes are\napplied with full deep-merge semantics and propagated to running upstream\nconnections immediately. Editing the config file by hand only works while\nthe daemon is offline.")
+	}
+	logger, err := createUpstreamLogger("warn")
+	if err != nil {
+		return fmt.Errorf("failed to create logger: %w", err)
+	}
+	socketPath := socket.DetectSocketPath(globalConfig.DataDir)
+	client := cliclient.NewClient(socketPath, logger.Sugar())
+
+	if err := client.PatchServer(ctx, serverName, bodyBytes); err != nil {
+		return err
+	}
+
+	fmt.Printf("✅ Patched %s", serverName)
+	parts := []string{}
+	if n := len(upstreamPatchHeaders); n > 0 {
+		parts = append(parts, fmt.Sprintf("%d header(s) set", n))
+	}
+	if n := len(upstreamPatchHeaderRemove); n > 0 {
+		parts = append(parts, fmt.Sprintf("%d header(s) removed", n))
+	}
+	if n := len(upstreamPatchEnvs); n > 0 {
+		parts = append(parts, fmt.Sprintf("%d env var(s) set", n))
+	}
+	if n := len(upstreamPatchEnvRemove); n > 0 {
+		parts = append(parts, fmt.Sprintf("%d env var(s) removed", n))
+	}
+	if len(parts) > 0 {
+		fmt.Printf(": %s", strings.Join(parts, ", "))
+	}
+	fmt.Println()
+	return nil
+}

frontend/src/views/ServerDetail.vue

@@ -2395,18 +2395,22 @@ async function patchServerDiff(patch: Record<string, unknown>, action: string):
 function scopeKey(scope: 'header' | 'env'): 'headers' | 'env' {
   return scope === 'header' ? 'headers' : 'env'
 }
-function scopeRemoveKey(scope: 'header' | 'env'): 'headers_remove' | 'env_remove' {
-  return scope === 'header' ? 'headers_remove' : 'env_remove'
-}
 
 async function saveEdit(scope: 'header' | 'env', k: string, val: string) {
   const ok = await patchServerDiff({ [scopeKey(scope)]: { [k]: val } }, `Updated ${k}`)
   if (ok) editingKey.value = null
 }
 
+// Deletion uses JSON Merge Patch (RFC 7396): a null value on the key
+// signals "delete this key" to the backend. JSON.stringify emits `null`
+// as the literal token, so the patch body becomes `{"headers": {"X-Old":
+// null}}` on the wire — symmetric with the MCP `upstream_servers patch`
+// tool's `{"X-Old": null}` convention. Note the explicit `null` literal:
+// passing `undefined` would be stripped by JSON.stringify (no key in the
+// output) and the backend would interpret that as "preserve".
 async function deleteKv(scope: 'header' | 'env', k: string) {
   if (!confirm(`Delete ${scope === 'header' ? 'header' : 'env variable'} "${k}"?`)) return
-  await patchServerDiff({ [scopeRemoveKey(scope)]: [k] }, `Deleted ${k}`)
+  await patchServerDiff({ [scopeKey(scope)]: { [k]: null } }, `Deleted ${k}`)
 }
 
 async function commitNewHeader() {

internal/cliclient/client.go

@@ -1224,6 +1224,62 @@ func (c *Client) AddServer(ctx context.Context, req *AddServerRequest) (*AddServ
 	return apiResp.Data, nil
 }
 
+// PatchServer issues a partial update against PATCH /api/v1/servers/{name}.
+//
+// The body is sent as raw JSON so callers can include JSON null values
+// for header / env deletion under JSON Merge Patch semantics (RFC 7396).
+// Building the body as `map[string]any{"X": nil}` would round-trip through
+// encoding/json fine, but `map[string]*string` is cleaner for fixed-shape
+// callers that want type safety — both forms are supported because
+// callers pass already-marshaled bytes.
+//
+// Example body shapes:
+//
+//	{"headers": {"X-New": "value"}}                  -- upsert
+//	{"headers": {"X-Stale": null}}                   -- delete
+//	{"headers": {"X-Set": "v", "X-Old": null}}       -- combined
+//	{"env": {"API_KEY": null}, "enabled": true}      -- env delete + enable
+func (c *Client) PatchServer(ctx context.Context, serverName string, body []byte) error {
+	url := fmt.Sprintf("%s/api/v1/servers/%s", c.baseURL, serverName)
+	req, err := http.NewRequestWithContext(ctx, http.MethodPatch, url, bytes.NewReader(body))
+	if err != nil {
+		return fmt.Errorf("failed to create request: %w", err)
+	}
+	req.Header.Set("Content-Type", "application/json")
+	c.prepareRequest(ctx, req)
+
+	resp, err := c.httpClient.Do(req)
+	if err != nil {
+		return fmt.Errorf("failed to call patch API: %w", err)
+	}
+	defer resp.Body.Close()
+
+	respBytes, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return fmt.Errorf("failed to read response: %w", err)
+	}
+
+	if resp.StatusCode == http.StatusNotFound {
+		return fmt.Errorf("server '%s' not found", serverName)
+	}
+	if resp.StatusCode != http.StatusOK {
+		return fmt.Errorf("API returned status %d: %s", resp.StatusCode, string(respBytes))
+	}
+
+	var apiResp struct {
+		Success   bool   `json:"success"`
+		Error     string `json:"error"`
+		RequestID string `json:"request_id"`
+	}
+	if err := json.Unmarshal(respBytes, &apiResp); err != nil {
+		return fmt.Errorf("failed to parse response: %w", err)
+	}
+	if !apiResp.Success {
+		return parseAPIError(apiResp.Error, apiResp.RequestID)
+	}
+	return nil
+}
+
 // RemoveServer removes an upstream server via the daemon API.
 func (c *Client) RemoveServer(ctx context.Context, serverName string) error {
 	url := fmt.Sprintf("%s/api/v1/servers/%s", c.baseURL, serverName)