potiuk commented on PR #23: URL: https://github.com/apache/comdev/pull/23#issuecomment-4892456756
@sebbASF — on your point about [replicating token/client code across tools](https://github.com/apache/comdev/pull/23#issuecomment-4887508829): agreed, and the design already avoids that. The shared, maintained artifact is the server's OpenAPI spec (`server/openapi.yaml`), not hand-written client code. Any tool generates its own typed client from that spec with a standard OpenAPI generator, so there is nothing to copy between tools — an API fix or enhancement lives in the spec and every consumer just regenerates. I've documented exactly how in the counterpart server PR: a new [Generating API Client Libraries](https://github.com/apache/incubator-ponymail-foal/blob/api-tokens/docs/generating_api_clients.md) guide, with copy-paste `openapi-generator` examples for Python, TypeScript, Go and Java, including bearer-token auth. That PR (apache/incubator-ponymail-foal#321) also adds a `bearerAuth` security scheme to the spec, so generated clients handle long-term API tokens out of the box. The MCP in this PR is just one such consumer; other tools that want long-term tokens generate a client the same way rather than reimplementing the plumbing. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
