Skip to content

ADR-017: Elicitation Passthrough ImplementationΒΆ

  • Status: Accepted
  • Date: 2025-10-26
  • Deciders: Mihai Criveti
  • Technical Story: spec/status.md item #27

ContextΒΆ

The Model Context Protocol (MCP) specification version 2025-06-18 introduced elicitation as a new feature for interactive user input workflows. Elicitation allows MCP servers to request structured information from users through the client during tool execution or other operations.

MCP Elicitation OverviewΒΆ

Flow Pattern: Server β†’ Client (reverse request pattern)

sequenceDiagram
    participant Server as MCP Server
    participant Gateway as MCP Gateway
    participant Client as Client (Claude Desktop)
    participant User

    Server->>Gateway: elicitation/create request
    Gateway->>Client: Forward elicitation/create
    Client->>User: Display UI (form/dialog)
    User->>Client: Provide input (accept/decline/cancel)
    Client->>Gateway: Return ElicitResult
    Gateway->>Server: Forward result
    Server->>Server: Continue processing with user input

Key Characteristics: - Newly introduced: First appeared in MCP 2025-06-18, design may evolve - Optional capability: Clients must advertise {"elicitation": {}} during initialization - Nested execution: Elicitation can occur inside tool/resource/prompt operations - Three-action model: Users can accept (with data), decline, or cancel - Structured schemas: Requests include JSON Schema (restricted to primitive types)

Gateway Architectural ChallengeΒΆ

The MCP Gateway operates as both: 1. Server to downstream clients (Claude Desktop, API consumers) 2. Client to upstream servers (MCP servers, federated gateways)

This dual role creates complexity for elicitation: - Upstream servers initiate elicitation requests - Gateway must forward to appropriate downstream clients - Responses must be routed back to the original requester - Session state must track pending elicitations

Current StateΒΆ

File: mcpgateway/main.py:3622-3623

elif method.startswith("elicitation/"):
    result = {}  # Stub implementation

Problem: Returns empty dict instead of proper handling, breaking MCP spec compliance.

DecisionΒΆ

Implement full passthrough elicitation support with the following architecture:

1. Bidirectional Proxy PatternΒΆ

# Server-to-Client flow (elicitation/create)
Upstream Server β†’ Gateway β†’ Downstream Client β†’ User
User β†’ Client β†’ Gateway β†’ Server

# Request tracking
ElicitationService tracks:
  - request_id β†’ (upstream_session, downstream_session, timeout)
  - Maps responses back to original requestor

2. Component ArchitectureΒΆ

New Service: mcpgateway/services/elicitation_service.py - Track active elicitation requests - Map request IDs between upstream/downstream sessions - Handle timeouts and cleanup - Validate schemas per MCP spec

Updated Components: - mcpgateway/cache/session_registry.py - Track client elicitation capability - mcpgateway/models.py - Add Pydantic models for elicitation types - mcpgateway/main.py - Implement elicitation/create handler

3. Configuration StrategyΒΆ

# .env.example / config.py
MCPGATEWAY_ELICITATION_ENABLED=true           # Master switch
MCPGATEWAY_ELICITATION_TIMEOUT=60             # Default timeout (seconds)
MCPGATEWAY_ELICITATION_MAX_CONCURRENT=100     # Max concurrent requests

4. Error HandlingΒΆ

# Scenarios handled:
1. Client doesn't support elicitation β†’ Error -32601 (Capability not available)
2. No active downstream clients β†’ Error -32000 (No capable clients connected)
3. Timeout waiting for response β†’ Error -32000 (Elicitation timeout)
4. Invalid schema β†’ Error -32602 (Invalid params)
5. Gateway elicitation disabled β†’ Error -32601 (Feature disabled)

5. Security ConsiderationsΒΆ

Per MCP spec security requirements: - No sensitive data: Validate schemas don't request passwords, API keys, etc. - Rate limiting: Enforce max concurrent elicitations per session - Timeout enforcement: Prevent indefinite blocking - Audit logging: Log all elicitation requests and responses (sanitized)

Implementation PlanΒΆ

Phase 1: Foundation (Priority: High)ΒΆ

  1. Add Pydantic Models (mcpgateway/models.py) 

    class ElicitationCapability(BaseModelWithConfigDict)
class ElicitRequestParams(BaseModelWithConfigDict)
class ElicitResult(BaseModelWithConfigDict)

  2. Create ElicitationService (mcpgateway/services/elicitation_service.py)

  3. Request tracking data structure
  4. Timeout management
  5. Response routing logic

  6. Schema validation (primitive types only)

  7. Update SessionRegistry (mcpgateway/cache/session_registry.py)

  8. Track client elicitation capability from initialization
  9. Store capability per session
  10. Provide lookup for capable clients

Phase 2: Request Handling (Priority: High)ΒΆ

  1. Implement Handler (mcpgateway/main.py) 

    elif method == "elicitation/create":
    # Validate elicitation enabled
    # Validate params (message, requestedSchema)
    # Find capable downstream client
    # Forward request via ElicitationService
    # Await response with timeout
    # Return ElicitResult

  2. Add Configuration (.env.example, config.py)

  3. Feature flags
  4. Timeout settings
  5. Concurrency limits

Phase 3: Testing & Documentation (Priority: Medium)ΒΆ

  1. Unit Tests
  2. ElicitationService request tracking
  3. Schema validation (primitive types only)
  4. Timeout handling

  5. Error scenarios

  6. Integration Tests

  7. End-to-end elicitation flow
  8. Multiple concurrent requests
  9. Client capability negotiation

  10. Response routing

  11. Update Documentation

  12. spec/status.md - Mark item #27 as completed
  13. README.md - Document elicitation configuration
  14. API docs - Document elicitation endpoints

Estimated ImplementationΒΆ

  • Lines of Code: ~300-400 (service + models + tests)
  • Files Modified: 6-8 files
  • Time Estimate: 4-6 hours implementation + 2-3 hours testing

Alternatives ConsideredΒΆ

Alternative 1: Stub Implementation (Return Error)ΒΆ

Decision: ❌ Rejected

elif method == "elicitation/create":
    raise JSONRPCError(-32601, "Elicitation not implemented")

Rationale: - βœ… Pro: Simplest implementation (5 lines of code) - βœ… Pro: Honest about lack of support - ❌ Con: Breaks MCP spec compliance (feature is in 2025-06-18 spec) - ❌ Con: Limits gateway usability with elicitation-enabled servers - ❌ Con: Future implementation requires complete rewrite

Alternative 2: Gateway-Initiated Elicitation OnlyΒΆ

Decision: ❌ Rejected

Implement elicitation for gateway's own use (e.g., configuration wizards) but not passthrough.

Rationale: - βœ… Pro: Simpler than passthrough (no session tracking) - βœ… Pro: Useful for gateway admin UI workflows - ❌ Con: Doesn't solve spec compliance for upstream servers - ❌ Con: Limited real-world use cases for gateway-initiated elicitation - ❌ Con: Still requires full implementation later for spec compliance

Alternative 3: Async Queue-Based ArchitectureΒΆ

Decision: ❌ Rejected

Use message queue (Redis, RabbitMQ) for elicitation request routing.

Rationale: - βœ… Pro: Better scalability for high-volume scenarios - βœ… Pro: Natural timeout/retry handling - ❌ Con: Adds external dependency complexity - ❌ Con: Overkill for typical elicitation volumes (low frequency, human-in-loop) - ❌ Con: More difficult to debug and troubleshoot - ❌ Con: Increases deployment complexity

ConsequencesΒΆ

Positive βœ…ΒΆ

  1. MCP 2025-06-18 Compliance: Gateway fully supports latest spec
  2. Interactive Workflows: Enables rich user interaction patterns from upstream servers
  3. Future-Proof: Ready for elicitation adoption as feature matures
  4. Federated Support: Multi-tier gateway deployments can pass elicitations through
  5. Configuration Flexibility: Can disable if not needed, minimal overhead when disabled
  6. Security First: Validates schemas, enforces timeouts, prevents abuse

Negative ❌¢

  1. Session Complexity: Adds request/response tracking across sessions
  2. Memory Overhead: Must track pending elicitations (mitigated by timeout/limits)
  3. Testing Complexity: Requires end-to-end test infrastructure
  4. Error Handling: Multiple failure modes require careful handling
  5. Feature Maturity: MCP spec notes "design may evolve" - risk of breaking changes

Neutral πŸ”„ΒΆ

  1. Adoption Uncertainty: Unknown how many servers will use elicitation
  2. Performance Impact: Minimal (elicitations are human-speed, not hot path)
  3. Maintenance: New service requires ongoing maintenance as spec evolves

Risks and MitigationsΒΆ

Risk 1: Spec EvolutionΒΆ

Risk: MCP spec notes elicitation design "may evolve in future versions"

Mitigation: - βœ… Implement behind feature flag for easy disabling - βœ… Comprehensive unit tests allow rapid updates - βœ… Schema validation centralizes spec-dependent logic - βœ… Monitor MCP spec changes and update promptly

Risk 2: Session Tracking BugsΒΆ

Risk: Request/response routing errors could cause hangs or wrong responses

Mitigation: - βœ… Aggressive timeouts (60s default, configurable) - βœ… Comprehensive error handling and logging - βœ… Request ID validation prevents mis-routing - βœ… Automatic cleanup of expired requests

Risk 3: Client Capability DetectionΒΆ

Risk: Incorrectly routing to non-capable clients

Mitigation: - βœ… Validate client capabilities during initialization - βœ… Store capability per session - βœ… Return clear error if no capable clients available - βœ… Log capability negotiation for debugging

Success MetricsΒΆ

  1. Functional:
  2. βœ… All elicitation spec requirements implemented
  3. βœ… 100% test coverage for ElicitationService

  4. βœ… Integration tests pass for all scenarios

  5. Performance:

  6. βœ… Elicitation overhead <10ms (excluding human response time)
  7. βœ… No memory leaks from pending requests

  8. βœ… Graceful handling of 100+ concurrent elicitations

  9. Operations:

  10. βœ… Clear error messages for all failure modes
  11. βœ… Comprehensive logging for debugging
  12. βœ… Configuration validation on startup
  13. βœ… Metrics exposed for monitoring

ReferencesΒΆ

  • MCP Specification: spec/modelcontextprotocol/docs/specification/2025-06-18/client/elicitation.mdx
  • FastMCP Implementation: .venv/lib/python3.12/site-packages/mcp/server/elicitation.py
  • Status Tracking: spec/status.md item #27
  • MCP Types Reference: .venv/lib/python3.12/site-packages/mcp/types.py lines 1277-1311

Decision Approved By: Mihai Criveti Implementation Tracked In: This ADR becomes the implementation specification for elicitation support.