Authentication
For sse and streamable-http transports, bridge supports three auth modes.
Bearer token
Section titled “Bearer token”{ "auth": { "type": "bearer", "token": "${MY_API_TOKEN}" } }Custom headers
Section titled “Custom headers”{ "auth": { "type": "header", "headers": { "X-API-Key": "${MY_KEY}", "X-Tenant": "acme" } }}OAuth2 Client Credentials
Section titled “OAuth2 Client Credentials”{ "auth": { "type": "oauth2", "clientId": "${CLIENT_ID}", "clientSecret": "${CLIENT_SECRET}", "tokenUrl": "https://provider.com/oauth/token", "scopes": ["read", "write"] }}OAuth2 tokens are acquired automatically, cached with expiry-aware refresh, and retried once on 401.
Detailed guides: