Protocol verification
Inspector
Run MCP Inspector and the project local smoke client against this mock server without mixing setup tasks into Config.
Standalone Inspector UI
Launch a separate local browser page. Use its Mock Server scenario to verify REST, MCP tools/resources/prompts/completion, SSE notifications, Basic, OAuth bearer permissions, token revocation, audit evidence, and reset guards through UI, or use generic mode for any MCP endpoint.
npm run inspector:uiMock Server full smoke inspector
This project-specific command verifies admin APIs, REST, MCP no-auth tools/resources/prompts/completion, SSE notifications, Basic, OAuth bearer permissions, token revocation, audit evidence, and reset guards.
npm run inspector:mockHTTPS self-signed local flow
Use app-level TLS only for local protocol/client tests. The Inspector allows self-signed certificates per run, without changing global TLS verification.
npm run start:tls:smokenpm run inspector:mock -- --base-url https://127.0.0.1:3443 --insecure-tlsAllow self-signed HTTPS for this runUpstream MCP Inspector targets
Start upstream Inspector with npx @modelcontextprotocol/inspector, then use these prefilled URLs or CLI commands. Basic and OAuth targets still need their Authorization header in Inspector. Upstream CLI supports tools/resources/prompts; use the project Generic target for completion presets when your Inspector CLI lacks `completion/complete`.
http://localhost:6274/?transport=streamable-http&serverUrl=https%3A%2F%2Fmcp.minasoftai.com%2Fmcp%2Fnonehttp://localhost:6274/?transport=streamable-http&serverUrl=https%3A%2F%2Fmcp.minasoftai.com%2Fmcp%2Fbasichttp://localhost:6274/?transport=streamable-http&serverUrl=https%3A%2F%2Fmcp.minasoftai.com%2Fmcp%2Foauthhttp://localhost:6274/?transport=sse&serverUrl=https%3A%2F%2Fmcp.minasoftai.com%2Fsse%2FnoneAuthorization: Basic ZGVmYXVsdDpkZWZhdWx0npx -y @modelcontextprotocol/inspector --cli https://mcp.minasoftai.com/mcp/none --transport http --method tools/listnpx -y @modelcontextprotocol/inspector --cli https://mcp.minasoftai.com/mcp/none --transport http --method resources/read --uri mock://resources/server-statusnpx -y @modelcontextprotocol/inspector --cli https://mcp.minasoftai.com/mcp/none --transport http --method prompts/get --prompt-name support_reply --prompt-args tone=friendlynpx -y @modelcontextprotocol/inspector --cli https://mcp.minasoftai.com/mcp/basic --transport http --method tools/list --header "Authorization: Basic ZGVmYXVsdDpkZWZhdWx0"npx -y @modelcontextprotocol/inspector --cli https://mcp.minasoftai.com/mcp/oauth --transport http --method tools/list --header "Authorization: Bearer PASTE_ACCESS_TOKEN"npx -y @modelcontextprotocol/inspector --cli https://mcp.minasoftai.com/sse/none --transport sse --method tools/listnpx -y @modelcontextprotocol/inspector --cli https://mcp.minasoftai.com/sse/none --transport sse --method resources/read --uri mock://resources/server-statusCurrent connection targets
https://mcp.minasoftai.com/mcphttps://mcp.minasoftai.com/mcp/nonehttps://mcp.minasoftai.com/mcp/basichttps://mcp.minasoftai.com/mcp/oauthhttps://mcp.minasoftai.com/sse/nonehttps://mcp.minasoftai.com/sse/basichttps://mcp.minasoftai.com/sse/oauthhttps://mcp.minasoftai.com/rest/toolsmock://resources/server-statusmock://resources/customers/{customerId}support_replyhttps://mcp.minasoftai.com/.well-known/oauth-authorization-serverhttps://mcp.minasoftai.com/.well-known/oauth-protected-resourcehttps://mcp.minasoftai.com/oauth/jwksOAuth bearer preparation
- Create or open an OAuth client and allow the tools, resources, and prompts that should be callable.
- Use authorization code or client credentials to issue a token from
/oauth/token. - Pass the token to MCP Inspector as an Authorization bearer header for the OAuth target.
- Use Tokens to inspect claims and revoke the token, then rerun the same call to confirm 401 behavior.
OAuth authorization-code guide
Use this when you want to verify the browser login and consent flow before pasting the Bearer token into Inspector or another MCP client.
https://mcp.minasoftai.com/oauth/authorize?response_type=code&client_id=default&redirect_uri=http%3A%2F%2Flocalhost%3A3000%2Foauth%2Fcallback&resource=https%3A%2F%2Fmcp.minasoftai.com&state=local-inspector-democurl -X POST https://mcp.minasoftai.com/oauth/token -H 'content-type: application/x-www-form-urlencoded' -d 'grant_type=authorization_code' -d 'code=PASTE_AUTHORIZATION_CODE' -d 'redirect_uri=http://localhost:3000/oauth/callback' -d 'client_id=default' -d 'client_secret=default'curl -X POST https://mcp.minasoftai.com/mcp/oauth \
-H 'content-type: application/json' \
-H 'accept: application/json, text/event-stream' \
-H 'MCP-Protocol-Version: 2025-06-18' \
-H 'authorization: Bearer PASTE_ACCESS_TOKEN' \
-d '{"jsonrpc":"2.0","id":1,"method":"tools/list"}'Base URL diagnostics
- Effective base URL
- https://mcp.minasoftai.com
- Source
- app_base_url
- OAuth issuer
- https://mcp.minasoftai.com
- Token endpoint
- https://mcp.minasoftai.com/oauth/token
- Selected client
- default (2 endpoints)
- Redirect callback origin
- http://localhost:3000
Client and curl examples
{
"mcpServers": {
"mcp-mock-no-auth": {
"url": "https://mcp.minasoftai.com/mcp/none"
},
"mcp-mock-basic": {
"url": "https://mcp.minasoftai.com/mcp/basic",
"headers": {
"Authorization": "Basic base64(default:default)"
}
},
"mcp-mock-oauth": {
"type": "streamable-http",
"url": "https://mcp.minasoftai.com/mcp/oauth",
"authorization_server": "https://mcp.minasoftai.com/.well-known/oauth-authorization-server",
"protected_resource": "https://mcp.minasoftai.com/.well-known/oauth-protected-resource"
},
"mcp-mock-sse-no-auth": {
"type": "sse",
"url": "https://mcp.minasoftai.com/sse/none"
}
}
}curl https://mcp.minasoftai.com/rest/tools
curl -X POST https://mcp.minasoftai.com/rest/tools/echo/call -H 'content-type: application/json' -d '{"arguments":{"message":"hello"}}'
curl -u default:default https://mcp.minasoftai.com/rest/tools
curl https://mcp.minasoftai.com/.well-known/oauth-protected-resource