Skip to content

feat: add outbound auth wizard step with OAuth and API Key credential creation#417

Open
aidandaly24 wants to merge 4 commits intoaws:feat/gateway-integrationfrom
aidandaly24:feat/batch-4-outbound-auth-wizard
Open

feat: add outbound auth wizard step with OAuth and API Key credential creation#417
aidandaly24 wants to merge 4 commits intoaws:feat/gateway-integrationfrom
aidandaly24:feat/batch-4-outbound-auth-wizard

Conversation

@aidandaly24
Copy link
Contributor

@aidandaly24 aidandaly24 commented Feb 24, 2026
edited
Loading

Description

When creating a gateway target through the TUI wizard, users previously had no way to configure outbound authentication. They'd have to manually edit mcp.json to add auth config after the
fact.

This PR adds an outbound auth step to the wizard flow. After selecting a gateway, users now see:

  1. Auth type selection — No authorization or OAuth 2LO
  2. Credential selection (OAuth only) — Create a new credential inline or pick an existing one from agentcore.json
  3. Inline credential creation — For OAuth: name, client ID, masked client secret, discovery URL. Uses SecretInput for sensitive fields.

If "No authorization" is selected, the wizard skips straight to confirm. If credential creation fails (e.g. duplicate name), the sub-flow resets so the user can try again.

The confirm screen now shows the auth type and credential name in the review.

Note: API Key was removed from the outbound auth options as MCP server targets only support OAuth and NoAuth per the service documentation.

New wizard flows:

  • create-new: name → source → language → gateway → outbound-auth → confirm
  • existing-endpoint: name → source → endpoint → gateway → outbound-auth → confirm

This is the TUI layer on top of the operations added in the previous PR (Task 12a), which added createCredential OAuth support and CLI flags.

Related Issue

Part of the MCP Gateway Phase 1 integration (gateway-integration branch). Task 12b.

Type of Change

  • New feature

Testing

How have you tested the change?

  • I ran npm run test:unit and npm run test:integ
  • I ran npm run typecheck
  • I ran npm run lint
  • If I modified src/assets/, I ran npm run test:update-snapshots and committed the updated snapshots

No new tests — this is TUI wiring over the operations layer tested in Task 12a. The credential creation, validation, and config writing are all covered by existing tests.

Checklist

  • I have read the CONTRIBUTING document
  • I have added any necessary tests that prove my fix is effective or my feature works
  • I have updated the documentation accordingly
  • I have added an appropriate example to the documentation to outline the feature, or no new docs are needed
  • My changes generate no new warnings
  • Any dependent changes have been merged and published

@github-actions github-actions bot added the size/xl PR size: XL label Feb 24, 2026
@aidandaly24 aidandaly24 force-pushed the feat/batch-4-outbound-auth-wizard branch from 37b14c8 to 66a33cc Compare February 24, 2026 17:04
@github-actions github-actions bot added size/l PR size: L and removed size/xl PR size: XL labels Feb 24, 2026
@aidandaly24 aidandaly24 force-pushed the feat/batch-4-outbound-auth-wizard branch from 66a33cc to a8682f4 Compare February 24, 2026 22:55
@github-actions github-actions bot added size/m PR size: M and removed size/l PR size: L size/m PR size: M labels Feb 24, 2026
@aidandaly24 aidandaly24 force-pushed the feat/batch-4-outbound-auth-wizard branch from 6c91b7c to a8682f4 Compare February 24, 2026 22:57
@github-actions github-actions bot added size/m PR size: M and removed size/m PR size: M labels Feb 24, 2026
@aidandaly24 aidandaly24 force-pushed the feat/batch-4-outbound-auth-wizard branch from a8682f4 to 606661b Compare February 24, 2026 22:59
@github-actions github-actions bot added size/m PR size: M and removed size/m PR size: M labels Feb 24, 2026
notgitika
notgitika requested changes Feb 24, 2026
View reviewed changes
@aidandaly24 aidandaly24 force-pushed the feat/batch-4-outbound-auth-wizard branch from 606661b to 630afdc Compare February 25, 2026 05:59
@github-actions github-actions bot added size/m PR size: M and removed size/m PR size: M labels Feb 25, 2026
@aidandaly24
feat: add outbound auth wizard step with OAuth and API Key credential…
d3b0213 
… creation

Add outbound-auth step to gateway-target TUI wizard after gateway/host selection:
- Auth type selection: No authorization, OAuth 2LO, API Key
- Credential selection: create new or use existing
- OAuth inline creation: name, client ID, masked client secret, discovery URL
- API Key inline creation: name, masked API key
- Confirm screen shows auth type and credential name
- Error handling resets sub-flow on credential creation failure
@aidandaly24
fix: remove 'No authorization' from outbound auth options
0961809 
MCP server targets require OAuth or API Key credential providers.
GATEWAY_IAM_ROLE is not supported for MCP server targets. Since
MCP server is the only target type in Phase 1, remove the NONE
option entirely.
@aidandaly24
fix: add back NoAuth, remove API_KEY from outbound auth options
975a54c
@aidandaly24 aidandaly24 force-pushed the feat/batch-4-outbound-auth-wizard branch from 9108f0e to 975a54c Compare February 25, 2026 19:23
@github-actions github-actions bot added size/m PR size: M and removed size/m PR size: M labels Feb 25, 2026
@github-actions github-actions bot added size/m PR size: M and removed size/m PR size: M labels Feb 25, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@notgitika notgitika notgitika requested changes

Assignees

No one assigned

Labels

size/m PR size: M

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aidandaly24 @notgitika