Misleading 'missing required parameters' error when authentication fails #1463
Description
Description
When authentication fails in the Azure MCP, Service Bus commands return a misleading error message stating "missing required parameters" even when all required parameters are correctly provided. This makes debugging authentication issues very difficult.
Version
@azure/mcp@2.0.0-beta.9
Steps to Reproduce
- Configure Azure MCP without proper credential configuration (e.g., when
DefaultAzureCredentialpicks up wrong tenant) - Call any Service Bus command with all required parameters:
command: "servicebus_topic_details"
parameters: {
"namespace": "mynamespace.servicebus.windows.net",
"topic": "my-topic"
}
Expected Behavior
Should return a clear authentication error like:
- "Authentication failed: wrong tenant"
- "InvalidAuthenticationTokenTenant: The access token is from the wrong issuer"
Actual Behavior
Returns:
The 'servicebus_topic_details' command is missing required parameters.
This is confusing because all required parameters ARE provided.
Root Cause
The actual issue was DefaultAzureCredential picking up credentials from a different Azure tenant. The fix was setting AZURE_TOKEN_CREDENTIALS=azureclicredential to force use of Azure CLI credentials.
Impact
- Spent significant time debugging "parameter" issues that didn't exist
- The real auth problem was hidden behind a misleading error
- Other users may face the same confusion (see issue [BUG]Azure MCP could not auth even though az login succeeds #1105)
Suggestion
Improve error handling to:
- Catch authentication failures and return clear auth error messages
- Only return "missing parameters" when parameters are actually missing
- Include the underlying error details when available
Workaround
Set environment variable: AZURE_TOKEN_CREDENTIALS=azureclicredential
Metadata
Metadata
Assignees
Labels
Type
Projects
Status