Skip to content

docs: make DNS rebinding protection more prominent in server.md #1586

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
pcarleton merged 6 commits into from
Feb 26, 2026
+23 −7
Merged

docs: make DNS rebinding protection more prominent in server.md #1586

Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
20d6ec6
docs: make DNS rebinding protection more prominent in server.md
pcarleton Feb 25, 2026
ba83a11
docs: reword DNS rebinding warning to avoid implying missing protection
pcarleton Feb 25, 2026
02e6a6f
docs: lead with createMcpExpressApp() example in Streamable HTTP section
pcarleton Feb 25, 2026
eb9ccf6
docs: add DNS rebinding warning before raw transport examples
pcarleton Feb 25, 2026
077286e
Apply suggestion from Jenn
pcarleton Feb 26, 2026
8cd92e4
Merge branch 'main' into paulc/pcp-57-dns-rebinding-docs
pcarleton Feb 26, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
30 changes: 23 additions & 7 deletions docs/server.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,23 +25,33 @@ Streamable HTTP is the HTTP‑based transport. It supports:
- Optional JSON‑only response mode with no SSE
- Session management and resumability

A minimal stateful setup:
A minimal stateless server using `createMcpExpressApp()`, which includes [DNS rebinding protection](#dns-rebinding-protection) by default:

```ts source="../examples/server/src/serverGuide.examples.ts#streamableHttp_stateful"
const server = new McpServer({ name: 'my-server', version: '1.0.0' });
```ts
const app = createMcpExpressApp();

const transport = new NodeStreamableHTTPServerTransport({
sessionIdGenerator: () => randomUUID()
app.post('/mcp', async (req, res) => {
const server = new McpServer({ name: 'my-server', version: '1.0.0' });
const transport = new NodeStreamableHTTPServerTransport({
sessionIdGenerator: undefined // stateless
});
await server.connect(transport);
await transport.handleRequest(req, res, req.body);
});

await server.connect(transport);
app.listen(3000, '127.0.0.1');
```

For stateful servers with session management, see [`simpleStreamableHttp.ts`](https://github.com/modelcontextprotocol/typescript-sdk/blob/main/examples/server/src/simpleStreamableHttp.ts).

> [!NOTE]
> For full runnable examples, see [`simpleStreamableHttp.ts`](https://github.com/modelcontextprotocol/typescript-sdk/blob/main/examples/server/src/simpleStreamableHttp.ts) (sessions, logging, tasks, elicitation, auth hooks), [`jsonResponseStreamableHttp.ts`](https://github.com/modelcontextprotocol/typescript-sdk/blob/main/examples/server/src/jsonResponseStreamableHttp.ts) (`enableJsonResponse: true`, no SSE), and [`standaloneSseWithGetStreamableHttp.ts`](https://github.com/modelcontextprotocol/typescript-sdk/blob/main/examples/server/src/standaloneSseWithGetStreamableHttp.ts) (notifications with Streamable HTTP GET + SSE).
>
> For protocol details, see [Transports](https://modelcontextprotocol.io/specification/latest/basic/transports) in the MCP specification.

> [!WARNING]
> If your server listens on localhost, use [`createMcpExpressApp()`](#dns-rebinding-protection) or [`createMcpHonoApp()`](#dns-rebinding-protection) instead of using `NodeStreamableHTTPServerTransport` directly — they include [DNS rebinding protection](#dns-rebinding-protection) by default.

#### Stateless vs stateful sessions

Streamable HTTP can run:
Expand Down Expand Up @@ -438,7 +448,9 @@ Task-based execution enables "call-now, fetch-later" patterns for long-running o

### DNS rebinding protection

MCP servers running on localhost are vulnerable to DNS rebinding attacks. Use `createMcpExpressApp()` from `@modelcontextprotocol/express` to create an Express app with DNS rebinding protection enabled by default:
Under normal circumstances, cross-origin browser restrictions limit what a malicious website can do to your localhost server. [DNS rebinding attacks](https://en.wikipedia.org/wiki/DNS_rebinding) get around those restrictions entirely by making the requests appear as same-origin, since the attacking domain resolves to localhost. Validating the host header on the server side protects against this scenario. **All localhost MCP servers should use DNS rebinding protection.**

The recommended approach is to use `createMcpExpressApp()` (from `@modelcontextprotocol/express`) or `createMcpHonoApp()` (from `@modelcontextprotocol/hono`), which enable Host header validation by default:

```ts source="../examples/server/src/serverGuide.examples.ts#dnsRebinding_basic"
// Default: DNS rebinding protection auto-enabled (host is 127.0.0.1)
Expand All @@ -460,6 +472,10 @@ const app = createMcpExpressApp({
});
```

`createMcpHonoApp()` from `@modelcontextprotocol/hono` provides the same protection for Hono-based servers and Web Standard runtimes (Cloudflare Workers, Deno, Bun).

If you use `NodeStreamableHTTPServerTransport` directly with your own HTTP framework, you must implement Host header validation yourself. See the [`hostHeaderValidation`](https://github.com/modelcontextprotocol/typescript-sdk/blob/main/packages/middleware/express/src/express.ts) middleware source for reference.

## More server features

The sections above cover the essentials. The table below links to additional capabilities demonstrated in the runnable examples.
Expand Down
Loading