The GitHub MCP Server supports a multi-user HTTP mode for enterprise and cloud scenarios. In this mode, the server does **not** require a global GitHub token at startup. Instead, each HTTP request must include a GitHub token in the `Authorization` header:

- The token is **never** passed as a tool parameter or exposed to the agent/model.

- The server extracts the token from the `Authorization` header for each request and creates a new GitHub client per request.

- This enables secure, scalable, and multi-tenant deployments.

Start the server in multi-user mode on a configurable port (default: 8080):

./github-mcp-server multi-user --port 8080

- The `Authorization` header is **required** for every request.

- The server will return 401 Unauthorized if the header is missing.

- The agent and model never see the token value.

- This is the recommended and secure approach for HTTP APIs.

- Multi-tenant SaaS

- Shared enterprise deployments

- Web integrations where each user authenticates with their own GitHub token

- Single-user `stdio` and HTTP modes are still supported and unchanged.

multiUserCmd = &cobra.Command{

Use: "multi-user",

Short: "Start multi-user HTTP server (experimental)",

Long: `Start a streamable HTTP server that supports per-request GitHub authentication tokens for multi-user scenarios.`,

RunE: func(cmd *cobra.Command, _ []string) error {

port := viper.GetInt("port")

if port == 0 {

port = 8080 // default

}

var enabledToolsets []string

if err := viper.UnmarshalKey("toolsets", &enabledToolsets); err != nil {

return fmt.Errorf("failed to unmarshal toolsets: %w", err)

}

multiUserConfig := ghmcp.MultiUserHTTPServerConfig{

Version: version,

Host: viper.GetString("host"),

EnabledToolsets: enabledToolsets,

DynamicToolsets: viper.GetBool("dynamic_toolsets"),

ReadOnly: viper.GetBool("read-only"),

Port: port,

}

return ghmcp.RunMultiUserHTTPServer(multiUserConfig)

},

}

rootCmd.PersistentFlags().Int("port", 8080, "Port to bind the HTTP server to (multi-user mode)")

_ = viper.BindPFlag("port", rootCmd.PersistentFlags().Lookup("port"))

rootCmd.AddCommand(multiUserCmd)

package e2e_test

import (

"bytes"

"encoding/json"

"net/http"

"os/exec"

"testing"

"time"

)

func TestMultiUserHTTPServer_Integration(t *testing.T) {

// Start the server in multi-user mode on a random port (e.g. 18080)

cmd := exec.Command("../cmd/github-mcp-server/github-mcp-server", "multi-user", "--port", "18080")

cmd.Stdout = nil

cmd.Stderr = nil

if err := cmd.Start(); err != nil {

t.Fatalf("failed to start server: %v", err)

}

defer cmd.Process.Kill()

// Wait for server to start

time.Sleep(2 * time.Second)

// Make a request without Authorization header

resp, err := http.Post("http://localhost:18080/v1/mcp", "application/json", bytes.NewBufferString(`{"test":"noauth"}`))

if err != nil {

t.Fatalf("unexpected error: %v", err)

}

if resp.StatusCode != http.StatusUnauthorized {

t.Errorf("expected 401 Unauthorized, got %d", resp.StatusCode)

}

// Make a request with Authorization header

body, _ := json.Marshal(map[string]string{"test": "authed"})

req, _ := http.NewRequest("POST", "http://localhost:18080/v1/mcp", bytes.NewBuffer(body))

req.Header.Set("Authorization", "Bearer testtoken123")

req.Header.Set("Content-Type", "application/json")

resp2, err := http.DefaultClient.Do(req)

if err != nil {

t.Fatalf("unexpected error: %v", err)

}

if resp2.StatusCode == http.StatusUnauthorized {

t.Errorf("expected not 401, got 401 (token should be accepted if server is running and token is valid)")

}

}

package ghmcp

import (

"bytes"

"encoding/json"

"io"

"net/http"

"net/http/httptest"

"testing"

)

type dummyRequest struct {

Test string `json:"test"`

}

func TestMultiUserHTTPServer_TokenRequired(t *testing.T) {

h := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

token := extractTokenFromRequest(r)

if token == "" {

w.WriteHeader(http.StatusUnauthorized)

_, _ = w.Write([]byte(`{"error":"missing GitHub token in Authorization header"}`))

return

}

w.WriteHeader(http.StatusOK)

_, _ = w.Write([]byte(`{"ok":true}`))

})

ts := httptest.NewServer(h)

defer ts.Close()

// No Authorization header

resp, err := http.Post(ts.URL, "application/json", bytes.NewBufferString(`{"test":"noauth"}`))

if err != nil {

t.Fatalf("unexpected error: %v", err)

}

if resp.StatusCode != http.StatusUnauthorized {

t.Errorf("expected 401 Unauthorized, got %d", resp.StatusCode)

}

}

func TestMultiUserHTTPServer_ValidToken(t *testing.T) {

h := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

token := extractTokenFromRequest(r)

if token == "" {

w.WriteHeader(http.StatusUnauthorized)

_, _ = w.Write([]byte(`{"error":"missing GitHub token in Authorization header"}`))

return

}

w.WriteHeader(http.StatusOK)

_, _ = w.Write([]byte(`{"ok":true,"token":"` + token + `"}`))

})

ts := httptest.NewServer(h)

defer ts.Close()

// With Authorization header

body, _ := json.Marshal(dummyRequest{Test: "authed"})

req, _ := http.NewRequest("POST", ts.URL, bytes.NewBuffer(body))

req.Header.Set("Authorization", "Bearer testtoken123")

req.Header.Set("Content-Type", "application/json")

resp, err := http.DefaultClient.Do(req)

if err != nil {

t.Fatalf("unexpected error: %v", err)

}

if resp.StatusCode != http.StatusOK {

t.Errorf("expected 200 OK, got %d", resp.StatusCode)

}

data, _ := io.ReadAll(resp.Body)

if !bytes.Contains(data, []byte("testtoken123")) {

t.Errorf("expected token in response, got %s", string(data))

}

}

// filter "all" from the enabled tool sets

type MultiUserHTTPServerConfig struct {

Version string

Host string

EnabledToolsets []string

DynamicToolsets bool

ReadOnly bool

Port int

}

func RunMultiUserHTTPServer(cfg MultiUserHTTPServerConfig) error {

ctx, stop := signal.NotifyContext(context.Background(), os.Interrupt, syscall.SIGTERM)

defer stop()

t, _ := translations.TranslationHelper()

handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

token := extractTokenFromRequest(r)

if token == "" {

w.WriteHeader(http.StatusUnauthorized)

_, _ = w.Write([]byte(`{"error":"missing GitHub token in Authorization header"}`))

return

}

ghServer, err := NewMCPServer(MCPServerConfig{

Version: cfg.Version,

Host: cfg.Host,

Token: token,

EnabledToolsets: cfg.EnabledToolsets,

DynamicToolsets: cfg.DynamicToolsets,

ReadOnly: cfg.ReadOnly,

Translator: t,

})

if err != nil {

w.WriteHeader(http.StatusInternalServerError)

_, _ = w.Write([]byte(`{"error":"failed to create MCP server"}`))

return

}

// Use the MCP server's HTTP handler for this request

mcpHTTP := server.NewStreamableHTTPServer(ghServer)

mcpHTTP.ServeHTTP(w, r)

})

addr := fmt.Sprintf(":%d", cfg.Port)

fmt.Fprintf(os.Stderr, "GitHub MCP Server running in multi-user HTTP mode on %s\n", addr)

server := &http.Server{Addr: addr, Handler: handler}

go func() {

<-ctx.Done()

_ = server.Shutdown(context.Background())

}()

return server.ListenAndServe()

}

func extractTokenFromRequest(r *http.Request) string {

h := r.Header.Get("Authorization")

if h == "" {

return ""

}

if strings.HasPrefix(h, "Bearer ") {

return strings.TrimPrefix(h, "Bearer ")

}

return h

}