chrisleekr
diff --git a/‎.vscode/settings.json‎
Lines changed: 2 additions & 0 deletions b/‎.vscode/settings.json‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 15 additions & 1 deletion b/‎README.md‎
Lines changed: 15 additions & 1 deletion
diff --git a/‎src/core/server/http/handlers/mcpDelete.ts‎
Lines changed: 2 additions & 2 deletions b/‎src/core/server/http/handlers/mcpDelete.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/core/server/http/handlers/mcpPost.ts‎
Lines changed: 50 additions & 17 deletions b/‎src/core/server/http/handlers/mcpPost.ts‎
Lines changed: 50 additions & 17 deletions
diff --git a/‎src/core/server/transport/manager.ts‎
Lines changed: 105 additions & 54 deletions b/‎src/core/server/transport/manager.ts‎
Lines changed: 105 additions & 54 deletions
@@ -40,6 +40,7 @@
   },
   "cSpell.language": "en-US",
   "cSpell.words": [
+    "AWSS",
     "buildkitd",
     "buildx",
     "CERTDIR",
@@ -55,6 +56,7 @@
     "modelcontextprotocol",
     "oninitialized",
     "PKCE",
+    "resumability",
     "rspack",
     "Streamable",
     "tsparser",
 
@@ -7,7 +7,7 @@ A playground for Model Context Protocol (MCP) server built with TypeScript and S
 - MCP Server implementation: HTTP-Based Streamable transport using `@modelcontextprotocol/sdk` with HTTP transport, session management, and tool execution.
 - OAuth authentication/3rd party authorization: Implements an OAuth server for MCP clients to process 3rd party authorization servers like Auth0, providing Dynamic Application Registration for MCP server.
 - Storage: Provide storage for MCP server to store data like OAuth sessions, tokens, etc.
-- Session Management: MCP server can manage multiple sessions stateless.
+- Session Management: Support stateful sessions by using replay of initial request.
 - Tools: `echo`, `system-time`, `streaming`, `project` for demonstration.
 - Prompts: `echo`
 
@@ -133,6 +133,20 @@ helm install mcp-server-playground chrisleekr/mcp-server-playground
      - JSON Web Token (JWT) Signature Algorithm: RS256
    - Click on "Create"
 
+## How to make stateful session with multiple MCP Server instances?
+
+When the MCP server is deployed as a cluster, it is not possible to make it stateful with multiple MCP Server instances because the transport is not shared between instances by design.
+
+To make it truly stateful, I used Valkey to store the session id with the initial request.
+
+When the request comes in to alternative MCP server instance, it will check if the session id is in the Valkey. If it is, it will replay the initial request and connect the transport to the server.
+
+Inspired from [https://github.com/modelcontextprotocol/modelcontextprotocol/discussions/102](https://github.com/modelcontextprotocol/modelcontextprotocol/discussions/102)
+
+The below diagram shows the flow of the stateful session management.
+
+<img width="681" height="882" alt="Image" src="https://github.com/user-attachments/assets/7f56339e-2665-47cb-a882-69d3c7096b47" />
+
 ## TODO
 
 - [ ] Streaming is not working as expected. It returns the final result instead of streaming the data.
 
@@ -19,15 +19,15 @@ export function setupMCPDeleteHandler(
         if (
           sessionId === undefined ||
           sessionId.trim() === '' ||
-          !(await transportManager.hasTransport(sessionId))
+          !(await transportManager.hasSession(sessionId))
         ) {
           loggingContext.log('error', 'Session not found');
           res.status(200).json({ error: 'Session not found' }); // Return 200 to gracefully handle the request
           return;
         }
 
         loggingContext.log('debug', 'Found session, getting transport');
-        const transport = await transportManager.getTransport(sessionId);
+        const transport = transportManager.getTransport(sessionId);
         if (!transport) {
           loggingContext.log('error', 'Transport not found');
           res.status(200).json({ error: 'Transport not found' }); // Return 200 to gracefully handle the request
 
@@ -37,37 +37,64 @@ export function setupMCPPostHandler(
         if (
           sessionId !== undefined &&
           sessionId.trim() !== '' &&
-          (await transportManager.hasTransport(sessionId))
+          (await transportManager.hasSession(sessionId))
         ) {
-          loggingContext.log('debug', 'Found session, getting transport');
-          // Reuse existing transport
-          const existingTransport =
-            await transportManager.getTransport(sessionId);
-          if (!existingTransport) {
+          loggingContext.log('debug', 'Session exists, checking transport', {
+            data: { sessionId },
+          });
+          // If transport exists in this server, then use the existing transport.
+          // If transport does not exist in this server, then reply initial request and create a new transport based on the sessionId.
+          if (transportManager.hasTransport(sessionId)) {
+            loggingContext.log(
+              'debug',
+              'Found transport in this server, using existing transport'
+            );
+            // Reuse existing transport
+            const existingTransport = transportManager.getTransport(sessionId);
+            if (!existingTransport) {
+              loggingContext.log(
+                'error',
+                'Transport not found despite has() check'
+              );
+              throw new Error('Transport not found despite has() check');
+            }
+            transport = existingTransport;
+          } else {
             loggingContext.log(
-              'error',
-              'Transport not found despite has() check'
+              'debug',
+              'No transport found in this server, replay initial request'
             );
-            throw new Error('Transport not found despite has() check');
+            // Setup a new transport for the session
+            transport = await transportManager.replayInitialRequest(sessionId);
           }
-          loggingContext.log(
-            'debug',
-            'Transport found, using existing transport'
-          );
-          transport = existingTransport;
         } else if (
-          sessionId === undefined &&
+          (sessionId === undefined || sessionId.trim() === '') &&
           isInitializeRequest(requestBody)
         ) {
           loggingContext.log('debug', 'No session found, creating new session');
           // New initialization request
           const newSessionId = randomUUID();
 
-          transport = await transportManager.createTransport(newSessionId);
+          transport = transportManager.createTransport(newSessionId);
+
+          // Save the initial request to the session
+          await transportManager.saveSession(newSessionId, {
+            initialRequest: requestBody,
+          });
+
+          // Connect the transport to the server
+          loggingContext.log('debug', 'Connecting transport to server');
+          await transportManager.getServer().connect(transport);
         } else {
           loggingContext.log(
             'error',
-            'Invalid request: missing session ID or not an initialization request'
+            'Invalid request: missing session ID or not an initialization request',
+            {
+              data: {
+                sessionId,
+                requestBody,
+              },
+            }
           );
           res.status(400).json({
             error:
@@ -76,6 +103,12 @@ export function setupMCPPostHandler(
           return;
         }
 
+        loggingContext.log('debug', 'Handling request', {
+          data: {
+            sessionId,
+            requestBody,
+          },
+        });
         await transport.handleRequest(req, res, requestBody);
         loggingContext.log('debug', 'Request handled');
         return;
 
@@ -1,5 +1,7 @@
 import { Server } from '@modelcontextprotocol/sdk/server/index.js';
 import { StreamableHTTPServerTransport } from '@modelcontextprotocol/sdk/server/streamableHttp.js';
+import { InitializeRequest } from '@modelcontextprotocol/sdk/types.js';
+import type express from 'express';
 
 import { config } from '@/config/manager';
 import { createStorage } from '@/core/storage/storageFactory';
@@ -8,10 +10,16 @@ import { Storage } from '@/core/storage/types';
 import { loggingContext } from '../http/context';
 
 export class TransportManager {
+  // MCP server instance.
   private server: Server;
+
+  // Storage for session data to keep track of the initial request.
   private storage: Storage;
+
+  // Map of sessionId to transport in this server memory.
   private transports: Map<string, StreamableHTTPServerTransport> = new Map();
 
+  // Prefix for the session data cache key.
   private readonly CACHE_KEY_PREFIX = 'mcp-session';
 
   constructor(server: Server) {
@@ -28,96 +36,145 @@ export class TransportManager {
     }
   }
 
-  public async getTransport(
-    sessionId: string
-  ): Promise<StreamableHTTPServerTransport | undefined> {
-    loggingContext.log('debug', 'Getting transport', {
+  public getServer(): Server {
+    return this.server;
+  }
+
+  public async hasSession(sessionId: string): Promise<boolean> {
+    loggingContext.log('debug', 'Checking if session exists', {
       data: { sessionId },
     });
-
-    // If storage contains sessionId, then check transports with sessionId. If not, then create a new transport with sessionId.
     const session = await this.storage.get(
       `${this.CACHE_KEY_PREFIX}:${sessionId}`
     );
-    if (session !== null && session.trim() !== '') {
-      if (this.transports.has(sessionId)) {
-        loggingContext.log('debug', 'Transport found in transports', {
-          data: { sessionId },
-        });
-        return this.transports.get(sessionId);
-      }
-
-      // It exists in storage, but not in transports. Create a new transport with sessionId.
-      loggingContext.log(
-        'debug',
-        'Transport not found in transports, creating new transport'
-      );
-      const newTransport = await this.createTransport(sessionId);
-      this.transports.set(sessionId, newTransport);
+    return session !== null && session.trim() !== '';
+  }
 
-      return newTransport;
+  public async saveSession(
+    sessionId: string,
+    sessionData: {
+      initialRequest: InitializeRequest;
     }
+  ): Promise<void> {
+    // TODO: Make this to be expired after a certain time.
+    await this.storage.set(
+      `${this.CACHE_KEY_PREFIX}:${sessionId}`,
+      JSON.stringify(sessionData)
+    );
+  }
 
-    // If session is not found, then return undefined.
-    return undefined;
+  public hasTransport(sessionId: string): boolean {
+    return this.transports.has(sessionId);
   }
 
-  public async hasTransport(sessionId: string): Promise<boolean> {
-    loggingContext.log('debug', 'Checking if transport exists', {
-      data: { sessionId },
-    });
+  public getTransport(
+    sessionId: string
+  ): StreamableHTTPServerTransport | undefined {
+    return this.transports.get(sessionId);
+  }
+
+  public async replayInitialRequest(
+    sessionId: string
+  ): Promise<StreamableHTTPServerTransport> {
     const session = await this.storage.get(
       `${this.CACHE_KEY_PREFIX}:${sessionId}`
     );
-    return session !== null && session.trim() !== '';
+    if (session === null || session.trim() === '') {
+      throw new Error('Session not found');
+    }
+    const sessionData = JSON.parse(session) as {
+      initialRequest: InitializeRequest;
+    };
+    loggingContext.log('debug', 'Replaying initial request', {
+      data: { sessionData },
+    });
+
+    const transport = this.createTransport(sessionId);
+
+    // Replay initial request with dummy request and response.
+    // This is to simulate the initial request and response.
+    await transport.handleRequest(
+      {
+        method: 'POST',
+        url: '/mcp',
+        headers: {
+          accept: ['application/json', 'text/event-stream'],
+          'content-type': ['application/json', 'text/event-stream'],
+        },
+        body: JSON.stringify(sessionData.initialRequest),
+      } as unknown as express.Request,
+      {
+        on: () => {},
+        writeHead: () => {
+          return {
+            end: () => {},
+          } as unknown as express.Response;
+        },
+      } as unknown as express.Response,
+      sessionData.initialRequest
+    );
+
+    loggingContext.log(
+      'debug',
+      'Initial request replayed, connecting transport',
+      {
+        data: {
+          sessionId,
+          transportCount: this.transports.size,
+        },
+      }
+    );
+
+    await this.server.connect(transport);
+
+    return transport;
   }
 
-  public async createTransport(
-    sessionId: string
-  ): Promise<StreamableHTTPServerTransport> {
+  public createTransport(sessionId: string): StreamableHTTPServerTransport {
     const transport = new StreamableHTTPServerTransport({
       /**
        * Function that generates a session ID for the transport.
        * The session ID SHOULD be globally unique and cryptographically secure (e.g., a securely generated UUID, a JWT, or a cryptographic hash)
        *
        * Return undefined to disable session management.
        */
-      // This is disabled to make stateless mode.
-      sessionIdGenerator: undefined,
-      // Below is for stateful mode.
-      // sessionIdGenerator: (): string => sessionId,
+      sessionIdGenerator: (): string => sessionId,
+
       /**
        * If true, the server will return JSON responses instead of starting an SSE stream.
        * This can be useful for simple request/response scenarios without streaming.
        * Default is false (SSE streams are preferred).
        */
       enableJsonResponse: false,
+      /**
+       * TODO: Make custom event store for persistent storage.
+       * Event store for resumability support
+       * If provided, resumability will be enabled, allowing clients to reconnect and resume messages
+       */
+      // eventStore?: EventStore;
     });
 
-    // Manually set the session ID to ensure it's available
-    transport.sessionId = sessionId;
     loggingContext.log('debug', 'Creating transport', {
       data: { sessionId },
     });
 
     this.transports.set(sessionId, transport);
-    await this.storage.set(
-      `${this.CACHE_KEY_PREFIX}:${sessionId}`,
-      JSON.stringify({
-        createdAt: new Date().toISOString(),
-      })
-    );
 
-    loggingContext.log('debug', 'Transport created');
+    loggingContext.log('debug', 'Transport created', {
+      data: {
+        sessionId: transport.sessionId,
+      },
+    });
 
     // Set up cleanup handler
     transport.onclose = (): void => {
       const currentSessionId = transport.sessionId;
       if (currentSessionId !== undefined && currentSessionId.trim() !== '') {
         this.transports.delete(currentSessionId);
-        void this.storage.delete(
-          `${this.CACHE_KEY_PREFIX}:${currentSessionId}`
-        );
+        // Shouldn't delete the session data from storage to avoid sunset server deleting the session data.
+        // void this.storage.delete(
+        //   `${this.CACHE_KEY_PREFIX}:${currentSessionId}`
+        // );
         loggingContext.log('debug', 'Transport closed and cleaned up', {
           data: {
             transportCount: this.transports.size,
@@ -126,12 +183,6 @@ export class TransportManager {
       }
     };
 
-    // Connect the transport to the server
-    loggingContext.log('debug', 'Connecting transport to server');
-    await this.server.connect(
-      transport as StreamableHTTPServerTransport & { sessionId: string }
-    );
-
     return transport;
   }