Support for the MCP base protocol

June 24, 2026 · View on GitHub

  1. Lifecycle
    1. Discovery (server/discover)
    2. Per-request _meta keys
  2. Transports
    1. Stdio Transport
    2. Streamable Transport
    3. Custom transports
    4. Concurrency
  3. Authorization
    1. Server
    2. Client
  4. Security
    1. Confused Deputy
    2. Token Passthrough
    3. Server-Side Request Forgery
    4. Session Hijacking
    5. Issuer Mix-Up
  5. Utilities
    1. Cancellation
    2. Ping
    3. Progress
    4. Error codes

Lifecycle

The SDK provides an API for defining both MCP clients and servers, and connecting them over various transports. When a client and server are connected, it creates a logical session.

The MCP specification defines two lifecycle models, and the SDK supports both transparently based on the negotiated protocol version:

  • The legacy initialize handshake (lifecycle) used by protocol versions through 2025-11-25.
  • A stateless model introduced in 2026-07-28 by SEP-2575, in which there is no initialize/notifications/initialized handshake, and each request carries its protocol version, client identity, and client capabilities in _meta.

In both models, the SDK exposes the same API:

  • A Client is a logical MCP client, configured with various ClientOptions.
  • When a client is connected to a server using Client.Connect, it creates a ClientSession. This session is initialized during the Connect method, and provides methods to communicate with the server peer.
  • A Server is a logical MCP server, configured with various ServerOptions.
  • When a server is connected to a client using Server.Connect, it creates a ServerSession.

In the legacy model, the server session is not considered initialized until the client sends the notifications/initialized message. Use ServerOptions.InitializedHandler to listen for this event, or just use the session through various feature handlers (such as a ToolHandler). Requests to the server are rejected until the client has initialized the session.

In the stateless model (2026-07-28+), there is no handshake. The server processes the first request the moment it arrives, validates the per-request _meta fields.

Both ClientSession and ServerSession have a Close method to terminate the session, and a Wait method to await session termination by the peer. Typically, it is the client's responsibility to end the session.

func Example_lifecycle() {
	ctx := context.Background()

	// Create a client and server. Under protocol version 2026-07-28, there
	// is no dedicated initialize/initialized handshake: the session is
	// implicitly live the moment the client issues its first request.
	client := mcp.NewClient(&mcp.Implementation{Name: "client", Version: "v0.0.1"}, nil)
	server := mcp.NewServer(&mcp.Implementation{Name: "server", Version: "v0.0.1"}, nil)

	// Connect the server and client using in-memory transports.
	t1, t2 := mcp.NewInMemoryTransports()
	serverSession, err := server.Connect(ctx, t1, nil)
	if err != nil {
		log.Fatal(err)
	}
	clientSession, err := client.Connect(ctx, t2, nil)
	if err != nil {
		log.Fatal(err)
	}

	// Now shut down the session by closing the client, and waiting for the
	// server session to end.
	if err := clientSession.Close(); err != nil {
		log.Fatal(err)
	}
	if err := serverSession.Wait(); err != nil {
		log.Fatal(err)
	}
	// Output:
}

Discovery (server/discover)

Introduced in 2026-07-28 by SEP-2575, the server/discover RPC lets a client discover a server's supported protocol versions, capabilities, and identity before issuing any other request. Servers implementing 2026-07-28 MUST implement it.

  • Server: Server.Connect registers the server/discover handler automatically; the response is computed from the server's static configuration (capabilities, server info, instructions) and the transport-filtered list of supported protocol versions.
  • Client: Client.Connect calls server/discover first and uses the result to negotiate a mutually supported version. If discovery fails or the server does not support the latest version, the client falls back to the legacy initialize handshake.

Per-request _meta keys

When the negotiated protocol version is 2026-07-28 or later, every request carries these keys inside its _meta map (constants live in mcp/protocol.go):

ConstantWire keyType
MetaKeyProtocolVersionio.modelcontextprotocol/protocolVersionstring
MetaKeyClientInfoio.modelcontextprotocol/clientInfo*Implementation
MetaKeyClientCapabilitiesio.modelcontextprotocol/clientCapabilities*ClientCapabilities
MetaKeyLogLevelio.modelcontextprotocol/logLevelLoggingLevel (deprecated by SEP-2577)

The client populates these keys automatically on every outgoing request. Server-side handlers can read them through ServerRequest[P].ProtocolVersion(), ServerRequest[P].ClientInfo(), and ServerRequest[P].ClientCapabilities().

Transports

A transport can be used to send JSON-RPC messages from client to server, or vice-versa.

In the SDK, this is achieved by implementing the Transport interface, which creates a (logical) bidirectional stream of JSON-RPC messages. Most transport implementations described below are specific to either the client or server: a "client transport" is something that can be used to connect a client to a server, and a "server transport" is something that can be used to connect a server to a client. However, it's possible for a transport to be both a client and server transport, such as the InMemoryTransport used in the lifecycle example above.

Transports should not be reused for multiple connections: if you need to create multiple connections, use different transports.

Stdio Transport

In the stdio transport clients communicate with an MCP server running in a subprocess using newline-delimited JSON over its stdin/stdout.

Client-side: the client side of the stdio transport is implemented by CommandTransport, which starts the a exec.Cmd as a subprocess and communicates over its stdin/stdout.

Server-side: the server side of the stdio transport is implemented by StdioTransport, which connects over the current processes os.Stdin and os.Stdout.

Streamable Transport

The streamable transport API is implemented across three types:

  • StreamableHTTPHandler: anhttp.Handler that serves streamable MCP sessions.
  • StreamableServerTransport: a Transport that implements the server side of the streamable transport.
  • StreamableClientTransport: a Transport that implements the client side of the streamable transport.

To create a streamable MCP server, you create a StreamableHTTPHandler and pass it an mcp.Server:

// TODO: Until we have a way to clean up abandoned sessions, this test will leak goroutines (see #499)
func ExampleStreamableHTTPHandler() {
	// Create a new streamable handler, using the same MCP server for every request.
	//
	// Here, we configure it to serves application/json responses rather than
	// text/event-stream, just so the output below doesn't use random event ids.
	server := mcp.NewServer(&mcp.Implementation{Name: "server", Version: "v0.1.0"}, nil)
	handler := mcp.NewStreamableHTTPHandler(func(r *http.Request) *mcp.Server {
		return server
	}, &mcp.StreamableHTTPOptions{JSONResponse: true})
	httpServer := httptest.NewServer(handler)
	defer httpServer.Close()

	// The SDK is currently permissive of some missing keys in "params".
	resp := mustPostMessage(`{"jsonrpc": "2.0", "id": 1, "method":"initialize", "params": {"protocolVersion":"2025-11-25"}}`, httpServer.URL)
	fmt.Println(resp)
	// Output:
	// {"jsonrpc":"2.0","id":1,"result":{"capabilities":{"logging":{}},"protocolVersion":"2025-11-25","serverInfo":{"name":"server","version":"v0.1.0"}}}
}

The StreamableHTTPHandler handles the HTTP requests and creates a new StreamableServerTransport for each new session. The transport is then used to communicate with the client.

On the client side, you create a StreamableClientTransport and use it to connect to the server:

transport := &mcp.StreamableClientTransport{
	Endpoint: "http://localhost:8080/mcp",
}
client, err := mcp.Connect(ctx, transport, &mcp.ClientOptions{...})

The StreamableClientTransport handles the HTTP requests and communicates with the server using the streamable transport protocol.

HTTP Headers

SEP-2243 standardises a small set of MCP-specific HTTP headers, sent and validated by the SDK only for sessions negotiated on protocol version 2026-07-28 or later.

HeaderDirectionPurpose
Mcp-Protocol-VersionrequestMirrors _meta.io.modelcontextprotocol/protocolVersion from the body
Mcp-Session-Idrequest/responseLogical session identifier (removed in stateless mode)
Mcp-MethodrequestMirrors the JSON-RPC method field; mismatch ⇒ -32020
Mcp-NamerequestMirrors the request's principal name (tools/call.params.name, prompts/get.params.name, resources/read.params.uri); mismatch ⇒ -32020
Mcp-Param-{Header}requestPer-tool parameter passthrough; see below

The header-name set is exhaustive: for protocol versions earlier than 2026-07-28, only Mcp-Protocol-Version and Mcp-Session-Id are recognised.

Body↔header mirroring. When Mcp-Method or Mcp-Name is present but does not match the JSON-RPC body, the server returns CodeHeaderMismatch (-32020). The same applies to a mismatch between Mcp-Protocol-Version and the body's _meta.io.modelcontextprotocol/protocolVersion.

Mcp-Param-* passthrough. A tool may annotate properties of its InputSchema with x-mcp-header: "<HeaderName>". When a client invokes that tool over HTTP, the SDK serializes the matching argument(s) as Mcp-Param-<HeaderName> request headers (using =?base64?...?= encoding for non-ASCII values). On the server, the headers are validated against the body and either accepted or rejected with -32020. Properties so annotated must be typed string, integer, or boolean; tools that fail validation at registration time are silently dropped from tools/list.

Resumability and Redelivery

By default, the streamable server does not support resumability or redelivery of messages, because doing so requires either a persistent storage solution or unbounded memory usage (see also #580).

To enable resumability, set StreamableHTTPOptions.EventStore to a non-nil value. The SDK provides a MemoryEventStore for testing or simple use cases; for production use it is generally advisable to use a more sophisticated implementation.

Note: SEP-2575 removes SSE stream resumability (Last-Event-ID, SSE event IDs) for protocol version 2026-07-28. The SDK preserves the EventStore and Last-Event-ID code paths for backward compatibility with 2025-11-25 and earlier; on 2026-07-28 sessions, a broken response stream loses the in-flight request and the client must re-issue it as a new request with a new ID.

Stateless Mode

The streamable server supports a stateless mode by setting StreamableHTTPOptions.Stateless, which is where the server does not perform any validation of the session id, and uses a temporary session to handle requests. In this mode, it is impossible for the server to make client requests, as there is no way for the client's response to reach the session.

However, it is still possible for the server to access the ServerSession.ID to see the logical session

Warning

Stateless mode is not directly discussed in the spec, and is still being defined. See modelcontextprotocol/modelcontextprotocol#1364, modelcontextprotocol/modelcontextprotocol#1372, or modelcontextprotocol/modelcontextprotocol#1442 for potential refinements.

Required for 2026-07-28: the streamable HTTP transport accepts requests at protocol version 2026-07-28 only when Stateless = true. Requests at that version against a non-stateless handler are rejected.

See examples/server/distributed for an example using stateless mode to implement a server distributed across multiple processes.

Custom transports

The SDK supports custom transports by implementing the Transport interface: a logical bidirectional stream of JSON-RPC messages.

Full example: examples/server/custom-transport.

Concurrency

In general, MCP offers no guarantees about concurrency semantics: if a client or server sends a notification, the spec says nothing about when the peer observes that notification relative to other request. However, the Go SDK implements the following heuristics:

  • If a notifying method (such as notifications/progress or notifications/initialized) returns, then it is guaranteed that the peer observes that notification before other notifications or calls from the same client goroutine.
  • Calls (such as tools/call) are handled asynchronously with respect to each other.

See modelcontextprotocol/go-sdk#26 for more background.

Authorization

Server

To write an MCP server that performs authorization, use RequireBearerToken. This function is middleware that wraps an HTTP handler, such as the one returned by NewStreamableHTTPHandler, to provide support for verifying bearer tokens. The middleware function checks every request for an Authorization header with a bearer token, and invokes the TokenVerifier passed to RequireBearerToken to parse the token and perform validation. The middleware function checks expiration and scopes (if they are provided in RequireBearerTokenOptions.Scopes), so the TokenVerifier doesn't have to. If RequireBearerTokenOptions.ResourceMetadataURL is set and verification fails, the middleware function sets the WWW-Authenticate header as required by the Protected Resource Metadata spec.

Server handlers, such as tool handlers, can obtain the TokenInfo returned by the TokenVerifier from req.Extra.TokenInfo, where req is the handler's request. (For example, a CallToolRequest.) HTTP handlers wrapped by the RequireBearerToken middleware can obtain the TokenInfo from the context with auth.TokenInfoFromContext.

OAuth Protected Resource Metadata

Servers implementing OAuth 2.0 authorization should expose a protected resource metadata endpoint as specified in RFC 9728. This endpoint provides clients with information about the resource server's OAuth configuration, including which authorization servers can be used and what scopes are supported.

The SDK provides ProtectedResourceMetadataHandler to serve this metadata. The handler automatically sets CORS headers (Access-Control-Allow-Origin: *) to support cross-origin client discovery, as the metadata contains only public configuration information.

Example usage:

metadata := &oauthex.ProtectedResourceMetadata{
    Resource: "https://example.com/mcp",
    AuthorizationServers: []string{
        "https://auth.example.com/.well-known/openid-configuration",
    },
    ScopesSupported: []string{"read", "write"},
}
http.Handle("/.well-known/oauth-protected-resource",
    auth.ProtectedResourceMetadataHandler(metadata))

For more sophisticated CORS policies, wrap the handler with a CORS middleware like github.com/rs/cors or github.com/jub0bs/cors.

The auth middleware example shows how to implement authorization for both JWT tokens and API keys.

Client

Client-side authorization is supported via the StreamableClientTransport.OAuthHandler field. If the handler is provided, the transport will automatically use it to add an Authorization: Bearer <token> header to every request. The transport will also call the handler's Authorize method if the server returns 401 Unauthorized or 403 Forbidden errors to perform the authorization flow or facilitate scope step-up authorization.

The SDK implements the Authorization Code flow in auth.AuthorizationCodeHandler. This handler supports:

To use it, configure the handler and assign it to the transport:

authHandler, _ := auth.NewAuthorizationCodeHandler(&auth.AuthorizationCodeHandlerConfig{
	RedirectURL: "https://myapp.com/oauth2-callback",
	// Configure one of the following:
	// ClientIDMetadataDocumentConfig: ...
	// PreregisteredClientConfig: ...
	// DynamicClientRegistrationConfig: ...
	AuthorizationCodeFetcher: func(ctx context.Context, args *auth.AuthorizationArgs) (*auth.AuthorizationResult, error) {
		// Open the args.URL in a browser and return the resulting code, state, and iss.
		// See full example in examples/auth/client/main.go.
		code := ...
		state := ...
		iss := ... // "iss" query parameter from the redirect URI (RFC 9207)
		return &auth.AuthorizationResult{Code: code, State: state, Iss: iss}, nil
	},
})

transport := &mcp.StreamableClientTransport{
	Endpoint:     "https://example.com/mcp",
	OAuthHandler: authHandler,
}
client := mcp.NewClient(&mcp.Implementation{Name: "client", Version: "v0.0.1"}, nil)
session, err := client.Connect(ctx, transport, nil)

The auth.AuthorizationCodeHandler automatically manages token refreshing (if the server provides a refresh token) and step-up authentication (when the server returns insufficient_scope error).

Enterprise Managed Authorization (SEP-990)

For enterprise SSO scenarios where users authenticate with an enterprise Identity Provider (IdP), the SDK provides extauth.EnterpriseHandler, an implementation of OAuthHandler that automates the Enterprise Managed Authorization flow:

  1. OIDC Login: User authenticates with enterprise IdP → ID Token
  2. Token Exchange (RFC 8693): ID Token → ID-JAG at IdP
  3. JWT Bearer Grant (RFC 7523): ID-JAG → Access Token at MCP Server

To use enterprise managed authorization, create an EnterpriseHandler and assign it to your transport:

// Create ID token fetcher using OIDC login
idTokenFetcher := func(ctx context.Context) (*oauth2.Token, error) {
    oidcConfig := &extauth.OIDCLoginConfig{
        IssuerURL: "https://company.okta.com",
        Credentials: &oauthex.ClientCredentials{
            ClientID: "idp-client-id",
            ClientSecretAuth: &oauthex.ClientSecretAuth{
                ClientSecret: "idp-client-secret",
            },
        },
        RedirectURL: "http://localhost:3142",
        Scopes:      []string{"openid", "profile", "email"},
    }

    tokens, err := extauth.PerformOIDCLogin(ctx, oidcConfig, authCodeFetcher)
    if err != nil {
        return nil, err
    }

    return tokens, nil
}

// Create Enterprise Handler
enterpriseHandler, err := extauth.NewEnterpriseHandler(&extauth.EnterpriseHandlerConfig{
    IdPIssuerURL: "https://company.okta.com",
    IdPCredentials: &oauthex.ClientCredentials{
        ClientID: "idp-client-id",
        ClientSecretAuth: &oauthex.ClientSecretAuth{
            ClientSecret: "idp-client-secret",
        },
    },
    MCPAuthServerURL: "https://auth.mcpserver.example",
    MCPResourceURI:   "https://mcp.mcpserver.example",
    MCPCredentials: &oauthex.ClientCredentials{
        ClientID: "mcp-client-id",
        ClientSecretAuth: &oauthex.ClientSecretAuth{
            ClientSecret: "mcp-client-secret",
        },
    },
    MCPScopes:      []string{"read", "write"},
    IDTokenFetcher: idTokenFetcher,
})

// Use with transport
transport := &mcp.StreamableClientTransport{
    Endpoint:     "https://example.com/mcp",
    OAuthHandler: enterpriseHandler,
}
client := mcp.NewClient(&mcp.Implementation{Name: "client", Version: "v0.0.1"}, nil)
session, err := client.Connect(ctx, transport, nil)

The EnterpriseHandler automatically manages the token exchange flow. Note that it intentionally does not support refresh tokens - when an access token expires, the entire authorization flow is repeated to ensure enterprise policies are consistently enforced.

For a complete working example, see examples/auth/enterprise.

Security

Here we discuss the mitigations described under the MCP's Security Best Practices section, and how we handle them.

Confused Deputy

The mitigation, obtaining user consent for dynamically registered clients, is mostly the responsibility of the MCP Proxy server implementation. The SDK client does generate cryptographically secure random state values for each authorization request by default and validates them when the authorization code is returned. Mismatched state values will result in an error.

Token Passthrough

The mitigation, accepting only tokens that were issued for the server, depends on the structure of tokens and is the responsibility of the TokenVerifier provided to RequireBearerToken.

Server-Side Request Forgery

The mitigations are as follows:

  • Enforce HTTPS. The OAuth helpers provided by the SDK reject the http:// URLs except loopback addresses (localhost, 127.0.0.1, ::1).

  • Block Private IP Ranges. The OAuth helpers provided by the SDK allow passing a custom http.Client. Developers are advised to customize the client it with appropriate network protections, including IP range blocking. The SDK does not provide this capability out of the box.

  • Validate Redirect Targets. Similarly to previous point, customized http.Client can be used to validate network hops. The SDK does not provide this capability out of the box.

  • Use Egress Proxies. This is out of scope for the SDK and can be configured separately.

  • DNS Resolution Considerations. The SDK has DNS rebinding protection on the server side which is enabled by default. For the client side, consider providing a custom http.Client that would implement DNS pinning.

Session Hijacking

The mitigations are as follows:

  • Verify all inbound requests. The RequireBearerToken middleware function will verify all HTTP requests that it receives. It is the user's responsibility to wrap that function around all handlers in their server.

  • Secure session IDs. This SDK generates cryptographically secure session IDs by default. If you create your own with ServerOptions.GetSessionID, it is your responsibility to ensure they are secure. We recommend using crypto/rand.Text.

  • Binding session IDs to user information. The SDK supports this mitigation through TokenInfo.UserID. When a TokenVerifier sets UserID on the returned TokenInfo, the streamable transport will:

    1. Store the user ID when a new session is created.
    2. Verify that subsequent requests to that session include a token with the same UserID.
    3. Reject requests with a 403 Forbidden if the user ID doesn't match.

    Recommendation: If your TokenVerifier can extract a user identifier from the token (such as a sub claim in a JWT, or a user ID associated with an API key), set TokenInfo.UserID to enable this protection. This prevents an attacker with a valid token from hijacking another user's session by guessing or obtaining their session ID.

Issuer Mix-Up

The mitigation against issuer mix-up attacks is implemented per RFC 9207. The SDK client validates the iss parameter in authorization responses to ensure they originated from the expected authorization server:

  • If iss is present in the redirect URI, the SDK verifies it matches the issuer from the authorization server's metadata. A mismatch results in an error.
  • If iss is absent but the authorization server advertises authorization_response_iss_parameter_supported: true in its RFC 8414 metadata, the SDK rejects the response with an error.

The AuthorizationCodeFetcher is responsible for extracting the iss query parameter from the redirect URI and returning it in AuthorizationResult.Iss.

Utilities

Cancellation

Cancellation is implemented with context cancellation. Cancelling a context used in a method on ClientSession or ServerSession will terminate the RPC and send a "notifications/cancelled" message to the peer.

When an RPC exits due to a cancellation error, there's a guarantee that the cancellation notification has been sent, but there's no guarantee that the server has observed it (see concurrency).

func Example_cancellation() {
	// For this example, we're going to be collecting observations from the
	// server and client.
	var clientResult, serverResult string
	var wg sync.WaitGroup
	wg.Add(2)

	// Create a server with a single slow tool.
	// When the client cancels its request, the server should observe
	// cancellation.
	server := mcp.NewServer(&mcp.Implementation{Name: "server", Version: "v0.0.1"}, nil)
	started := make(chan struct{}, 1) // signals that the server started handling the tool call
	mcp.AddTool(server, &mcp.Tool{Name: "slow"}, func(ctx context.Context, req *mcp.CallToolRequest, _ any) (*mcp.CallToolResult, any, error) {
		started <- struct{}{}
		defer wg.Done()
		select {
		case <-time.After(5 * time.Second):
			serverResult = "tool done"
		case <-ctx.Done():
			serverResult = "tool canceled"
		}
		return &mcp.CallToolResult{}, nil, nil
	})

	// Connect a client to the server.
	client := mcp.NewClient(&mcp.Implementation{Name: "client", Version: "v0.0.1"}, nil)
	ctx := context.Background()
	t1, t2 := mcp.NewInMemoryTransports()
	if _, err := server.Connect(ctx, t1, nil); err != nil {
		log.Fatal(err)
	}
	session, err := client.Connect(ctx, t2, nil)
	if err != nil {
		log.Fatal(err)
	}
	defer session.Close()

	// Make a tool call, asynchronously.
	ctx, cancel := context.WithCancel(context.Background())
	go func() {
		defer wg.Done()
		_, err = session.CallTool(ctx, &mcp.CallToolParams{Name: "slow"})
		clientResult = fmt.Sprintf("%v", err)
	}()

	// As soon as the server has started handling the call, cancel it from the
	// client side.
	<-started
	cancel()
	wg.Wait()

	fmt.Println(clientResult)
	fmt.Println(serverResult)
	// Output:
	// context canceled
	// tool canceled
}

Ping

Ping support is symmetrical for client and server.

To initiate a ping, call ClientSession.Ping or ServerSession.Ping.

To have the client or server session automatically ping its peer, and close the session if the ping fails, set ClientOptions.KeepAlive or ServerOptions.KeepAlive.

Note: ping is removed from the protocol as of 2026-07-28 by SEP-2575. The SDK preserves the API for backward compatibility with legacy clients; when both peers negotiate 2026-07-28, the server returns MethodNotFound (-32601) for ping and KeepAlive should not be enabled.

Progress

Progress reporting is possible by reading the progress token from request metadata and calling either ClientSession.NotifyProgress or ServerSession.NotifyProgress. To listen to progress notifications, set ClientOptions.ProgressNotificationHandler or ServerOptions.ProgressNotificationHandler.

Issue #460 discusses some potential ergonomic improvements to this API.

func Example_progress() {
	server := mcp.NewServer(&mcp.Implementation{Name: "server", Version: "v0.0.1"}, nil)
	mcp.AddTool(server, &mcp.Tool{Name: "makeProgress"}, func(ctx context.Context, req *mcp.CallToolRequest, _ any) (*mcp.CallToolResult, any, error) {
		if token := req.Params.GetProgressToken(); token != nil {
			for i := range 3 {
				params := &mcp.ProgressNotificationParams{
					Message:       "frobbing widgets",
					ProgressToken: token,
					Progress:      float64(i),
					Total:         2,
				}
				req.Session.NotifyProgress(ctx, params) // ignore error
			}
		}
		return &mcp.CallToolResult{}, nil, nil
	})
	client := mcp.NewClient(&mcp.Implementation{Name: "client", Version: "v0.0.1"}, &mcp.ClientOptions{
		ProgressNotificationHandler: func(_ context.Context, req *mcp.ProgressNotificationClientRequest) {
			fmt.Printf("%s %.0f/%.0f\n", req.Params.Message, req.Params.Progress, req.Params.Total)
		},
	})
	ctx := context.Background()
	t1, t2 := mcp.NewInMemoryTransports()
	if _, err := server.Connect(ctx, t1, nil); err != nil {
		log.Fatal(err)
	}

	session, err := client.Connect(ctx, t2, nil)
	if err != nil {
		log.Fatal(err)
	}
	defer session.Close()
	if _, err := session.CallTool(ctx, &mcp.CallToolParams{
		Name: "makeProgress",
		Meta: mcp.Meta{"progressToken": "abc123"},
	}); err != nil {
		log.Fatal(err)
	}
	// Output:
	// frobbing widgets 0/2
	// frobbing widgets 1/2
	// frobbing widgets 2/2
}

Error codes

The SDK uses the standard JSON-RPC base codes (parse error -32700, invalid request -32600, method not found -32601, invalid params -32602, internal error -32603) plus the following MCP-specific codes:

ConstantCodeMeaning
CodeHeaderMismatch-32020An MCP HTTP header (Mcp-Method, Mcp-Name, Mcp-Protocol-Version, or Mcp-Param-*) does not match the JSON-RPC body
CodeMissingRequiredClientCapabilities-32021Server requires client capabilities the client did not declare
CodeUnsupportedProtocolVersion-32022Requested protocol version not supported. Data: UnsupportedProtocolVersionData{Supported []string, Requested string}
CodeResourceNotFound-32602Resource URI not found (variable; was -32002 before SEP-2164)

The error code allocation policy defined in 2026-07-28 (SEP-2575) partitions the JSON-RPC server-error range:

  • -32000 to -32019: implementation-defined; existing SDK usage is grandfathered.
  • -32020 to -32099: reserved for the MCP specification.