feat: add custom handler support for all MCP server methods

[lbbniu]

Description

This PR adds comprehensive custom handler support to the MCP server, allowing developers to override the default behavior of all basic MCP methods. This enhancement provides greater flexibility for server customization and enables more sophisticated middleware integration patterns.

Type of Change

• New feature (non-breaking change that adds functionality)
• Bug fix (non-breaking change that fixes an issue)
• MCP spec compatibility implementation
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Documentation update
• Code refactoring (no functional changes)
• Performance improvement
• Tests only (no functional changes)
• Other (please describe):

Checklist

• My code follows the code style of this project
• I have performed a self-review of my own code
• I have added tests that prove my fix is effective or that my feature works
• I have updated the documentation accordingly

MCP Spec Compliance

• This PR implements a feature defined in the MCP specification
• Link to relevant spec section: Link text
• Implementation follows the specification exactly

Additional Information

Key Changes

• Added 11 custom handler fields to MCPServer struct for all basic MCP methods
• Implemented custom handler logic in all handle* methods with proper error handling
• Maintained backward compatibility by falling back to default behavior when custom handlers are not set
• Updated method signatures to use actual parameters instead of blank identifiers

Supported Methods

• InitializeHandler - Custom initialization logic
• PingHandler - Custom ping handling
• SetLevelHandler - Custom logging level setting
• ListResourcesHandler - Custom resource listing
• ListResourceTemplatesHandler - Custom resource template listing
• ReadResourceHandler - Custom resource reading
• ListPromptsHandler - Custom prompt listing
• GetPromptHandler - Custom prompt retrieval
• ListToolsHandler - Custom tool listing
• CallToolHandler - Custom tool execution
• NotificationHandler - Custom notification handling

Usage Example

server := NewMCPServer("my-server", "1.0.0")
server.InitializeHandler = func(ctx context.Context, request mcp.InitializeRequest) (*mcp.InitializeResult, error) {
    // Custom initialization logic
    return &mcp.InitializeResult{...}, nil
}

Benefits

• Enhanced Flexibility: Developers can now customize any MCP method behavior
• Better Middleware Support: Enables more sophisticated middleware patterns
• Backward Compatible: Existing code continues to work without changes
• Consistent API: All handlers follow the same pattern and error handling

Summary by CodeRabbit

• New Features

  • Added per-operation hooks to customize server behavior for initialization, ping, resource/prompts/tools listing and calls, level settings, and notifications.

• Improvements

  • Custom handlers can short-circuit default behavior when provided while preserving existing behavior otherwise.
  • Error responses now propagate request IDs for clearer troubleshooting.
  • Notifications can be handled immediately by custom logic.

• Bug Fixes

  • Message endpoint construction now preserves existing query parameters and avoids malformed URLs.

[coderabbitai]

Walkthrough

Adds optional per-method handler hooks to MCPServer in server/server.go that, when set, short‑circuit default handling and wrap handler errors as requestError with INTERNAL_ERROR and the original request id. Also fixes query delimiter when appending sessionId in server/sse.go.

Changes

Cohort / File(s)	Summary
Public per-method handler hooks server/server.go	Adds exported MCPServer fields: InitializeHandler, PingHandler, ListResourcesHandler, ListResourceTemplatesHandler, ReadResourceHandler, ListPromptsHandler, GetPromptHandler, ListToolsHandler, CallToolHandler, SetLevelHandler, NotificationHandler.
Handler short‑circuiting & error wrapping server/server.go	handleInitialize, handlePing, handleSetLevel, handleListResources, handleListResourceTemplates, handleReadResource, handleListPrompts, handleGetPrompt, handleListTools, handleToolCall, handleNotification now invoke the corresponding custom handler when set; return handler results or wrap handler errors as requestError with INTERNAL_ERROR and the original request id. Notification handler bypasses default dispatch when provided.
SSE endpoint query param fix server/sse.go	When composing the SSE message endpoint, conditionally uses ? or & based on existing query parameters before appending sessionId, avoiding malformed URLs like ...?x=1?sessionId=....

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• feat: Tool Handler Middleware #123 — Adds/adjusts tool-call handler wrapping/middleware; overlaps with the new CallToolHandler hook.
• feat: add resource handler middleware capability #569 — Introduces middleware/changes around resource read handling; directly related to the new ReadResourceHandler hook.
• feat(mcptest): extend test server with prompt and resource support #346 — Expands prompt/resource server plumbing and registration APIs; interacts with the newly added prompt/resource handler hooks.

Suggested reviewers

• steve-calvert-glean
• ezynda3

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title Check	✅ Passed	The PR title "feat: add custom handler support for all MCP server methods" is directly related to the main change in the changeset. According to the raw summary, the PR introduces 11 new public handler fields on the MCPServer struct that enable developers to customize behavior for corresponding MCP methods. The title clearly and concisely summarizes this primary change using standard conventional commit format ("feat:"). Someone scanning the commit history would understand that this PR adds extensibility through custom handlers for MCP server methods.
Description Check	✅ Passed	The PR description follows the repository's template structure comprehensively. It includes all major sections: a clear description of the changes, a type of change selection (marked as "New feature"), a filled-out checklist indicating completed and incomplete items, a MCP Spec Compliance section (appropriately marked as not applicable), and an Additional Information section with detailed key changes, supported methods, a usage example, and benefits. While the author marked that tests and documentation updates were not completed, the description itself is complete, well-organized, and provides sufficient detail for reviewers to understand the scope and implementation of the custom handler support feature.
Docstring Coverage	✅ Passed	No functions found in the changes. Docstring coverage check skipped.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

server/server.go (1)

1026-1036: Resource template path skips resource middlewares (panic recovery, logging, etc.).

Direct resource handlers are wrapped, but template handlers are not. This can bypass WithResourceRecovery and other middlewares and lead to process crashes on panics.

Apply this diff to wrap the matched template handler with the same middleware chain:

 if matched {
-    contents, err := matchedHandler(ctx, request)
+    finalHandler := matchedHandler
+    s.resourceMiddlewareMu.RLock()
+    mw := s.resourceHandlerMiddlewares
+    for i := len(mw) - 1; i >= 0; i-- {
+        finalHandler = mw[i](finalHandler)
+    }
+    s.resourceMiddlewareMu.RUnlock()
+    contents, err := finalHandler(ctx, request)
     if err != nil {
         return nil, &requestError{
             id:   id,
             code: mcp.INTERNAL_ERROR,
             err:  err,
         }
     }
     return &mcp.ReadResourceResult{Contents: contents}, nil
 }

🧹 Nitpick comments (5)

server/server.go (5)

174-186: Group and document the new handler fields; prefer options over mutable fields.

• Define named types for each handler (e.g., InitializeHandlerFunc) and add brief doc comments for public API clarity.
• Consider ServerOptions (e.g., WithInitializeHandler(...)) to set these once at construction time and avoid racy mutation after the server starts handling requests.

---

666-676: Custom handler errors are always mapped to INTERNAL_ERROR; allow richer error signaling.

Right now, custom handlers cannot surface INVALID_PARAMS, NOT_FOUND, etc. Consider supporting a lightweight interface (e.g., type JSONRPCErrorCarrier interface{ ToJSONRPCError() mcp.JSONRPCError }) or exported helpers so handlers can control the code. Fallback to INTERNAL_ERROR when not implemented.

Also applies to: 762-771, 781-790, 872-881, 922-931, 970-979, 1060-1069, 1110-1119, 1151-1160, 1252-1261

---

1321-1324: Global NotificationHandler shadows per-method handlers; chain both for additive behavior.

Calling the global handler and then returning prevents previously registered method-specific handlers from running. Prefer chaining to preserve backward compatibility and allow global observability.

Apply this diff to call both:

-    s.NotificationHandler(ctx, notification)
-    return nil
+    s.NotificationHandler(ctx, notification)
+    // fall through to per-method handlers as well

---

761-771: Guard against nil results from custom PingHandler for consistent JSON-RPC “result” shape.

Returning null is valid JSON-RPC, but elsewhere EmptyResult{} is used. Normalize to avoid client surprises.

     result, err := s.PingHandler(ctx, request)
     if err != nil {
         return nil, &requestError{
             id:   id,
             code: mcp.INTERNAL_ERROR,
             err:  err,
         }
     }
-    return result, nil
+    if result == nil {
+        result = &mcp.EmptyResult{}
+    }
+    return result, nil

---

780-790: Same here: enforce non-nil result from custom SetLevelHandler.

     result, err := s.SetLevelHandler(ctx, request)
     if err != nil {
         return nil, &requestError{
             id:   id,
             code: mcp.INTERNAL_ERROR,
             err:  err,
         }
     }
-    return result, nil
+    if result == nil {
+        result = &mcp.EmptyResult{}
+    }
+    return result, nil

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 47e9419 and c7e9b30.

📒 Files selected for processing (1)

• server/server.go (12 hunks)

🧰 Additional context used

🧠 Learnings (1)

📚 Learning: 2025-06-23T11:10:42.948Z

Learnt from: floatingIce91
PR: mark3labs/mcp-go#401
File: server/server.go:1082-1092
Timestamp: 2025-06-23T11:10:42.948Z
Learning: In Go MCP server, ServerTool.Tool field is only used for tool listing and indexing, not for tool execution or middleware. During handleToolCall, only the Handler field is used, so dynamic tools don't need the Tool field populated.

Applied to files:

• server/server.go

🧬 Code graph analysis (1)

server/server.go (3)

mcp/types.go (13)

• InitializeRequest (414-418)
• InitializeResult (430-444)
• PingRequest (508-511)
• EmptyResult (378-378)
• ListResourcesRequest (561-564)
• ListResourcesResult (568-571)
• ListResourceTemplatesRequest (575-578)
• ListResourceTemplatesResult (582-585)
• ReadResourceRequest (589-593)
• ReadResourceResult (605-608)
• SetLevelRequest (749-753)
• JSONRPCNotification (333-336)
• INTERNAL_ERROR (367-367)

mcp/prompts.go (4)

• ListPromptsRequest (9-12)
• ListPromptsResult (16-19)
• GetPromptRequest (23-27)
• GetPromptResult (38-43)

mcp/tools.go (4)

• ListToolsRequest (18-21)
• ListToolsResult (25-28)
• CallToolRequest (54-58)
• CallToolResult (40-51)

🔇 Additional comments (2)

server/server.go (2)

1294-1304: Correct: tool execution uses the Handler, not the Tool metadata.

This aligns with prior guidance that ServerTool.Tool is for listing/indexing only. Good consistency.

---

661-676: Resolved — handleInitialize call sites pass the id.
Invocations found at server/request_handler.go:96, server/sampling_test.go:133,146, and server/session_test.go:1132 — all supply the id argument.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (3)

server/sse.go (3)

476-482: Prefer net/url to construct the query (more robust, safer encoding).

The fix works, but using url.Parse + url.Values avoids delimiter edge cases and ensures proper encoding if future ids change format.

Apply:

-	if strings.Contains(endpointPath, "?") {
-		endpointPath += "&"
-	} else {
-		endpointPath += "?"
-	}
-	return fmt.Sprintf("%ssessionId=%s", endpointPath, sessionID)
+	if u, err := url.Parse(endpointPath); err == nil {
+		q := u.Query()
+		q.Set("sessionId", sessionID)
+		u.RawQuery = q.Encode()
+		return u.String()
+	}
+	// Fallback to preserve current behavior if parse fails.
+	sep := "?"
+	if strings.Contains(endpointPath, "?") {
+		sep = "&"
+	}
+	return endpointPath + sep + "sessionId=" + url.QueryEscape(sessionID)

---

441-444: Merge client query params via url.Values instead of string concatenation.

Prevents malformed URLs and guarantees proper encoding when appending the initial request’s query.

-	endpoint := s.GetMessageEndpointForClient(r, sessionID)
-	if s.appendQueryToMessageEndpoint && len(r.URL.RawQuery) > 0 {
-		endpoint += "&" + r.URL.RawQuery
-	}
+	endpoint := s.GetMessageEndpointForClient(r, sessionID)
+	if s.appendQueryToMessageEndpoint && r.URL.RawQuery != "" {
+		if u, err := url.Parse(endpoint); err == nil {
+			q := u.Query()
+			for k, vals := range r.URL.Query() {
+				for _, v := range vals {
+					q.Add(k, v)
+				}
+			}
+			u.RawQuery = q.Encode()
+			endpoint = u.String()
+		} else {
+			// Fallback to current behavior on parse error.
+			endpoint += "&" + r.URL.RawQuery
+		}
+	}

---

423-423: Normalize SSE frame formatting (consistent “data: ” and LF).

Align with other events for consistency and readability.

-					pingMsg := fmt.Sprintf("event: message\ndata:%s\n\n", messageBytes)
+					pingMsg := fmt.Sprintf("event: message\ndata: %s\n\n", messageBytes)

-	fmt.Fprintf(w, "event: endpoint\ndata: %s\r\n\r\n", endpoint)
+	fmt.Fprintf(w, "event: endpoint\ndata: %s\n\n", endpoint)

Also applies to: 444-444

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between c7e9b30 and 51ffe02.

📒 Files selected for processing (1)

• server/sse.go (1 hunks)

🧰 Additional context used

🧠 Learnings (1)

📚 Learning: 2025-04-28T00:14:49.263Z

Learnt from: robert-jackson-glean
PR: mark3labs/mcp-go#214
File: server/sse.go:0-0
Timestamp: 2025-04-28T00:14:49.263Z
Learning: The SSE server in mcp-go implements path sanitization within the `WithDynamicBasePath` function that ensures the dynamic base path starts with "/" and has no trailing "/" to prevent double slashes in URL construction.

Applied to files:

• server/sse.go

[coderabbitai]

Actionable comments posted: 1

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 51ffe02 and 6b9c30f.

📒 Files selected for processing (2)

• server/server.go (12 hunks)
• server/sse.go (1 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

**/*.go

📄 CodeRabbit inference engine (AGENTS.md)

**/*.go: Order imports: standard library first, then third-party, then local packages (goimports enforces this)
Follow Go naming conventions: exported identifiers in PascalCase; unexported in camelCase; acronyms uppercase (HTTP, JSON, MCP)
Error handling: return sentinel errors, wrap with fmt.Errorf("context: %w", err), and check with errors.Is/As
Prefer explicit types and strongly-typed structs; avoid using any except where protocol flexibility is required (e.g., Arguments any)
All exported types and functions must have GoDoc comments starting with the identifier name; avoid inline comments unless necessary
Functions that are handlers or long-running must accept context.Context as the first parameter
Ensure thread safety for shared state using sync.Mutex and document thread-safety requirements in comments
For JSON: use json struct tags with omitempty for optional fields; use json.RawMessage for flexible/deferred parsing

Files:

• server/server.go
• server/sse.go

🧠 Learnings (1)

📚 Learning: 2025-06-23T11:10:42.948Z

Learnt from: floatingIce91
PR: mark3labs/mcp-go#401
File: server/server.go:1082-1092
Timestamp: 2025-06-23T11:10:42.948Z
Learning: In Go MCP server, ServerTool.Tool field is only used for tool listing and indexing, not for tool execution or middleware. During handleToolCall, only the Handler field is used, so dynamic tools don't need the Tool field populated.

Applied to files:

• server/server.go

🧬 Code graph analysis (1)

server/server.go (3)

mcp/types.go (13)

• InitializeRequest (433-437)
• InitializeResult (449-463)
• PingRequest (531-534)
• EmptyResult (397-397)
• ListResourcesRequest (584-587)
• ListResourcesResult (591-594)
• ListResourceTemplatesRequest (598-601)
• ListResourceTemplatesResult (605-608)
• ReadResourceRequest (612-616)
• ReadResourceResult (628-631)
• SetLevelRequest (774-778)
• JSONRPCNotification (335-338)
• INTERNAL_ERROR (382-382)

mcp/prompts.go (4)

• ListPromptsRequest (9-12)
• ListPromptsResult (16-19)
• GetPromptRequest (23-27)
• GetPromptResult (38-43)

mcp/tools.go (4)

• ListToolsRequest (18-21)
• ListToolsResult (25-28)
• CallToolRequest (54-58)
• CallToolResult (40-51)

🔇 Additional comments (5)

server/sse.go (1)

499-504: LGTM! Correct fix for query parameter handling.

This change properly handles existing query parameters by conditionally choosing the delimiter. Previously, appending "?" unconditionally would produce malformed URLs like /path?x=1?sessionId=123. Now it correctly produces /path?x=1&sessionId=123.

server/server.go (4)

878-888: Document that custom ListResourcesHandler bypasses session-specific resources.

When ListResourcesHandler is provided, it short-circuits the default logic that merges session-specific resources (lines 897-908). Similarly, ReadResourceHandler bypasses resource middleware (lines 1036-1042) and template matching. Ensure this behavior is documented in the handler field's GoDoc comment so users understand they must implement these features if needed.

---

1208-1218: Document that custom tool handlers bypass middleware and filters.

ListToolsHandler bypasses session-specific tools (lines 1239-1269) and all registered tool filters (lines 1272-1278). CallToolHandler bypasses tool middleware (lines 1354-1361). Users implementing custom handlers must be aware they're responsible for these features if needed.

Based on learnings.

---

664-667: LGTM! Parameter names clarified.

Replacing blank identifiers (_) with actual parameter names (id, request) improves readability and is necessary for passing these values to custom handlers.

---

787-797: ****

The custom SetLevelHandler design intentionally allows handlers to bypass default validation—this is part of the optional pluggable callback API architecture. The validation responsibility falls to the custom handler implementer, not the base implementation. Since no custom handler implementations are introduced or used in this PR, no action is required.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Add GoDoc comments for exported handler fields.

All 11 exported handler fields lack documentation. Per coding guidelines, exported identifiers must have GoDoc comments starting with the identifier name. Users need to understand when these handlers are invoked, how errors are handled, and that they bypass default behavior (including middleware, session-specific resources/tools, and filters).

Example documentation pattern:

+	// InitializeHandler, if set, replaces the default initialization logic.
+	// It is invoked during the initialize request and bypasses all default capability
+	// negotiation. Errors are wrapped as INTERNAL_ERROR responses.
 	InitializeHandler            func(ctx context.Context, request mcp.InitializeRequest) (*mcp.InitializeResult, error)
+	// PingHandler, if set, replaces the default ping logic. Errors are wrapped as INTERNAL_ERROR responses.
 	PingHandler                  func(ctx context.Context, request mcp.PingRequest) (*mcp.EmptyResult, error)

As per coding guidelines.

Committable suggestion skipped: line range outside the PR's diff.