fix(mcp): allow OAuth flow for DCR-only servers; detect secret-only edits

waleedlatif1 · claude · waleedlatif1 · commit e37f10a3a841 · 2026-05-04T22:22:04.000-07:00
- Drop oauthClientId requirement on auth-failed bypass so DCR-capable servers can submit and trigger auto-OAuth
- Use oauthClientSecretTouched in hasChanges so clearing the stored secret enables submit

Co-Authored-By: Claude Opus 4.7 &lt;noreply@anthropic.com&gt;
diff --git a/apps/sim/app/workspace/[workspaceId]/settings/components/mcp/components/mcp-server-form-modal/mcp-server-form-modal.tsx b/apps/sim/app/workspace/[workspaceId]/settings/components/mcp/components/mcp-server-form-modal/mcp-server-form-modal.tsx
@@ -431,7 +431,7 @@ export function McpServerFormModal({
     if (formData.url !== originalData.url) return true
     if (formData.transport !== originalData.transport) return true
     if ((formData.oauthClientId || '') !== (originalData.oauthClientId || '')) return true
-    if ((formData.oauthClientSecret || '') !== (originalData.oauthClientSecret || '')) return true
+    if (oauthClientSecretTouched) return true
     const currentHeaders = formData.headers || []
     const origHeaders = originalData.headers || []
     if (currentHeaders.length !== origHeaders.length) return true
@@ -443,7 +443,7 @@ export function McpServerFormModal({
         return true
     }
     return false
-  }, [mode, formData, originalData])
+  }, [mode, formData, originalData, oauthClientSecretTouched])
 
   const parseJsonConfig = useCallback(
     (json: string): { name: string; url: string; headers: Record<string, string> } | null => {
@@ -524,7 +524,7 @@ export function McpServerFormModal({
           errorText.includes('unauthorized') ||
           errorText.includes('oauth') ||
           errorText.includes('authentication')
-        if (!(oauthClientId && looksLikeAuthRequired)) {
+        if (!looksLikeAuthRequired) {
           setSubmitError(
             connectionResult.error || 'Connection test failed. Please check the URL and try again.'
           )
