aws
diff --git a/‎.github/workflows/python.yml‎
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/python.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎README.md‎
Lines changed: 170 additions & 21 deletions b/‎README.md‎
Lines changed: 170 additions & 21 deletions
diff --git a/‎examples/mcp-client/agent-framework/.env.example‎
Lines changed: 9 additions & 0 deletions b/‎examples/mcp-client/agent-framework/.env.example‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎examples/mcp-client/agent-framework/README.md‎
Lines changed: 79 additions & 0 deletions b/‎examples/mcp-client/agent-framework/README.md‎
Lines changed: 79 additions & 0 deletions
@@ -61,7 +61,7 @@ jobs:
           uv run --frozen coverage report --fail-under=80
 
       - name: Run pyright
-        run: uv run --frozen pyright
+        run: uv run --frozen --all-packages pyright
 
       - name: Run ruff format
         run: uv run --frozen ruff format .
 
@@ -2,6 +2,7 @@
 *~
 *#
 *.DS_Store
+.claude
 .clinerules
 *-toolbag/
 
 
@@ -2,43 +2,78 @@
 
 ## Overview
 
-The MCP Proxy for AWS serves as a lightweight, client-side bridge between MCP clients (AI assistants and developer tools) and backend AWS MCP servers.
+The **MCP Proxy for AWS** package provides two ways to connect AI applications to MCP servers on AWS:
 
-The proxy handles [SigV4](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_sigv.html) authentication using local AWS credentials and provides dynamic tool discovery, making it ideal for developers who want access to AWS Hosted SigV4 secured MCP Servers without complex gateway setups.
+1. **Using it as a proxy** - It becomes a lightweight, client-side bridge between MCP clients (AI assistants like Claude Desktop, Amazon Q Developer CLI) and MCP servers on AWS. (See [MCP Proxy](#mcp-proxy))
+2. **Using it as a library** - Programmatically connect popular AI agent frameworks (LangChain, LlamaIndex, Strands Agents, etc.) to MCP servers on AWS. (See [Programmatic Access](#programmatic-access))
+
+
+### When Do You Need This Package?
+
+- You want to connect to **MCP servers on AWS** (e.g., using Amazon Bedrock AgentCore) that use AWS IAM authentication (SigV4) instead of OAuth
+- You're using MCP clients (like Claude Desktop, Amazon Q Developer CLI) that don't natively support AWS IAM authentication
+- You're building AI agents with popular frameworks like LangChain, Strands Agents, LlamaIndex, etc., that need to connect to MCP servers on AWS
+- You want to avoid building custom SigV4 request signing logic yourself
+
+### How This Package Helps
+
+**The Problem:** The official MCP specification supports OAuth-based authentication, but MCP servers on AWS can also use AWS IAM authentication (SigV4). Standard MCP clients don't know how to sign requests with AWS credentials.
+
+**The Solution:** This package bridges that gap by:
+- **Handling SigV4 authentication automatically** - Uses your local AWS credentials (from AWS CLI, environment variables, or IAM roles) to sign all MCP requests using [SigV4](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_sigv.html)
+- **Providing seamless integration** - Works with existing MCP clients and frameworks
+- **Eliminating custom code** - No need to build your own MCP client with SigV4 signing logic
+
+## Which Feature Should I Use?
+
+**Use as a proxy if you want to:**
+- Connect MCP clients like Claude Desktop or Amazon Q Developer CLI to MCP servers on AWS with IAM credentials
+- Add MCP servers on AWS to your AI assistant's configuration
+- Use a command-line tool that runs as a bridge between your MCP client and AWS
+
+**Use as a library if you want to:**
+- Build AI agents programmatically using popular frameworks like LangChain, Strands Agents, or LlamaIndex
+- Integrate AWS IAM-secured MCP servers directly into your Python applications
+- Have fine-grained control over the MCP session lifecycle in your code
 
 ## Prerequisites
 
 * [Install Python 3.10+](https://www.python.org/downloads/release/python-3100/)
 * [Install the `uv` package manager](https://docs.astral.sh/uv/getting-started/installation/)
-* [Install and configure the AWS CLI with credentials](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html)
+* AWS credentials configured (via [AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html), environment variables, or IAM roles)
 * (Optional, for docker users) [Install Docker Desktop](https://www.docker.com/products/docker-desktop)
 
-## Installation
+---
 
-### Using PyPi
+## MCP Proxy
 
+The MCP Proxy serves as a lightweight, client-side bridge between MCP clients (AI assistants and developer tools) and IAM-secured MCP servers on AWS. The proxy handles SigV4 authentication using local AWS credentials and provides dynamic tool discovery.
 
-```
+### Installation
+
+#### Using PyPi
+
+```bash
 # Run the server
 uvx mcp-proxy-for-aws@latest <SigV4 MCP endpoint URL>
 ```
 
-### Using Local Repository
+#### Using a local repository
 
-```
+```bash
 git clone https://github.com/aws/mcp-proxy-for-aws.git
 cd mcp-proxy-for-aws
 uv run mcp_proxy_for_aws/server.py <SigV4 MCP endpoint URL>
 ```
 
-### Using Docker
+#### Using Docker
 
-```
+```bash
 # Build the Docker image
 docker build -t mcp-proxy-for-aws .
 ```
 
-## Configuration Parameters
+### Configuration Parameters
 
 | Parameter	           | Description	                                                                                                                                                                                                                            | Default	                                                                    |Required	|
 |----------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------|---	|
@@ -55,12 +90,11 @@ docker build -t mcp-proxy-for-aws .
 | `--read-timeout`	    | Set desired read timeout in seconds	                                                                                                                                                                                                    | 120	                                                                        |No	|
 | `--write-timeout`	   | Set desired write timeout in seconds	                                                                                                                                                                                                   | 180	                                                                        |No	|
 
-
-## Optional Environment Variables
+### Optional Environment Variables
 
 Set the environment variables for the MCP Proxy for AWS:
 
-```
+```bash
 # Credentials through profile
 export AWS_PROFILE=<aws_profile>
 
@@ -73,14 +107,14 @@ export AWS_SESSION_TOKEN=<session_token>
 export AWS_REGION=<aws_region>
 ```
 
-## Setup Examples
+### Setup Examples
 
 Add the following configuration to your MCP client config file (e.g., for Amazon Q Developer CLI, edit `~/.aws/amazonq/mcp.json`):
 **Note** Add your own endpoint by replacing  `<SigV4 MCP endpoint URL>`
 
-### Running from local - using uv
+#### Running from local - using uv
 
-```
+```json
 {
   "mcpServers": {
     "<mcp server name>": {
@@ -108,9 +142,9 @@ Add the following configuration to your MCP client config file (e.g., for Amazon
 }
 ```
 
-### Using Docker
+#### Using Docker
 
-```
+```json
 {
   "mcpServers": {
     "<mcp server name>": {
@@ -129,6 +163,121 @@ Add the following configuration to your MCP client config file (e.g., for Amazon
 }
 ```
 
+---
+
+## Programmatic Access
+
+The MCP Proxy for AWS enables programmatic integration of IAM-secured MCP servers into AI agent frameworks. The library provides authenticated transport layers that work with popular Python AI frameworks.
+
+### Integration Patterns
+
+The library supports two integration patterns depending on your framework:
+
+#### Pattern 1: Client Factory Integration
+
+**Use with:** Frameworks that accept a factory function that returns an MCP client, e.g. Strands Agents, Microsoft Agent Framework. The `aws_iam_streamablehttp_client` is passed as a factory to the framework, which handles the connection lifecycle internally.
+
+**Example - Strands Agents:**
+```python
+from mcp_proxy_for_aws.client import aws_iam_streamablehttp_client
+
+mcp_client_factory = lambda: aws_iam_streamablehttp_client(
+    endpoint=mcp_url,    # The URL of the MCP server
+    aws_region=region,   # The region of the MCP server
+    aws_service=service  # The underlying AWS service, e.g. "bedrock-agentcore"
+)
+
+with MCPClient(mcp_client_factory) as mcp_client:
+    mcp_tools = mcp_client.list_tools_sync()
+    agent = Agent(tools=mcp_tools, ...)
+```
+
+**Example - Microsoft Agent Framework:**
+```python
+from mcp_proxy_for_aws.client import aws_iam_streamablehttp_client
+
+mcp_client_factory = lambda: aws_iam_streamablehttp_client(
+    endpoint=mcp_url,    # The URL of the MCP server
+    aws_region=region,   # The region of the MCP server
+    aws_service=service  # The underlying AWS service, e.g. "bedrock-agentcore"
+)
+
+mcp_tools = MCPStreamableHTTPTool(name="MCP Tools", url=mcp_url)
+mcp_tools.get_mcp_client = mcp_client_factory
+
+async with mcp_tools:
+    agent = ChatAgent(tools=[mcp_tools], ...)
+```
+
+#### Pattern 2: Direct MCP Session Integration
+
+**Use with:** Frameworks that require direct access to the MCP sessions, e.g. LangChain, LlamaIndex. The `aws_iam_streamablehttp_client` provides the authenticated transport streams, which are then used to create an MCP `ClientSession`.
+
+**Example - LangChain:**
+```python
+from mcp_proxy_for_aws.client import aws_iam_streamablehttp_client
+
+mcp_client = aws_iam_streamablehttp_client(
+    endpoint=mcp_url,    # The URL of the MCP server
+    aws_region=region,   # The region of the MCP server
+    aws_service=service  # The underlying AWS service, e.g. "bedrock-agentcore"
+)
+
+async with mcp_client as (read, write, session_id_callback):
+    async with ClientSession(read, write) as session:
+        mcp_tools = await load_mcp_tools(session)
+        agent = create_langchain_agent(tools=mcp_tools, ...)
+```
+
+**Example - LlamaIndex:**
+```python
+from mcp_proxy_for_aws.client import aws_iam_streamablehttp_client
+
+mcp_client = aws_iam_streamablehttp_client(
+    endpoint=mcp_url,    # The URL of the MCP server
+    aws_region=region,   # The region of the MCP server
+    aws_service=service  # The underlying AWS service, e.g. "bedrock-agentcore"
+)
+
+async with mcp_client as (read, write, session_id_callback):
+    async with ClientSession(read, write) as session:
+        mcp_tools = await McpToolSpec(client=session).to_tool_list_async()
+        agent = ReActAgent(tools=mcp_tools, ...)
+```
+
+### Running Examples
+
+Explore complete working examples for different frameworks in the [`./examples/mcp-client`](./examples/mcp-client) directory:
+
+**Available examples:**
+- **[LangChain](./examples/mcp-client/langchain/)**
+- **[LlamaIndex](./examples/mcp-client/llamaindex/)**
+- **[Microsoft Agent Framework](./examples/mcp-client/agent-framework/)**
+- **[Strands Agents SDK](./examples/mcp-client/strands/)**
+
+Run examples individually:
+```bash
+cd examples/mcp-client/[framework]  # e.g. examples/mcp-client/strands
+uv run main.py
+```
+
+### Installation
+
+The client library is included when you install the package:
+
+```bash
+pip install mcp-proxy-for-aws
+```
+
+For development:
+```bash
+git clone https://github.com/aws/mcp-proxy-for-aws.git
+cd mcp-proxy-for-aws
+uv sync
+```
+
+---
+
 ## Development & Contributing
 
 For development setup, testing, and contribution guidelines, see:
@@ -138,8 +287,8 @@ For development setup, testing, and contribution guidelines, see:
 
 Resources to understand SigV4:
 
-- <https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_sigv.html>
-- SigV4: <https://github.com/boto/botocore/blob/develop/botocore/signers.py>
+- SigV4 User Guide: <https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_sigv.html>
+- SigV4 Signers: <https://github.com/boto/botocore/blob/develop/botocore/signers.py>
 - SigV4a: <https://github.com/aws-samples/sigv4a-signing-examples/blob/main/python/sigv4a_sign.py>
 
 ## License
 
@@ -0,0 +1,9 @@
+# The URL of your MCP server
+MCP_SERVER_URL="https://example-mcp-server.gateway.bedrock-agentcore.us-west-2.amazonaws.com/mcp"
+# The AWS service hosting the MCP server
+MCP_SERVER_AWS_SERVICE="bedrock-agentcore"
+# The AWS region where the MCP server is hosted
+MCP_SERVER_REGION="us-west-2"
+
+# Your OpenAI API key for the agent's language model
+OPENAI_API_KEY="sk-..."
@@ -0,0 +1,79 @@
+# Example: Microsoft Agent Framework
+
+This example demonstrates how to use `aws_iam_streamablehttp_client` from `mcp-proxy-for-aws` to connect a [Microsoft Agent Framework](https://learn.microsoft.com/en-us/agent-framework/) agent to an MCP server using AWS IAM authentication.
+
+**Note:** Microsoft Agent Framework accepts a factory function that returns an MCP client. The `aws_iam_streamablehttp_client` is passed as a factory to the framework's `MCPStreamableHTTPTool`, which handles the connection lifecycle internally.
+
+## Prerequisites
+
+- [Python 3.10+](https://www.python.org/downloads) and [uv](https://docs.astral.sh/uv/getting-started/installation/) installed
+- AWS credentials configured (via [AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html), environment variables, or IAM roles)
+- An [OpenAI API key](https://platform.openai.com/api-keys) for the language model
+
+## Setup
+
+Create a `.env` file or set the following environment variables:
+
+```bash
+# MCP server details
+MCP_SERVER_URL=https://example.gateway.bedrock-agentcore.us-west-2.amazonaws.com/mcp
+MCP_SERVER_AWS_SERVICE=bedrock-agentcore
+MCP_SERVER_REGION=us-west-2
+
+# OpenAI API key for the agent's LLM
+OPENAI_API_KEY=sk-...
+```
+
+All four environment variables are required.
+
+## Usage
+
+Run the example:
+
+```bash
+uv run main.py
+```
+
+The agent will connect to the MCP server and list its available tools.
+
+## How It Works
+
+1. **Loads configuration** from environment variables or `.env` file
+3. **Creates an AWS IAM-authenticated MCP client** using `aws_iam_streamablehttp_client()`
+4. **Integrates with Agent Framework** by configuring `MCPStreamableHTTPTool.get_mcp_client`
+5. **Creates an agent** with access to the MCP server tools
+6. **Runs the agent** to demonstrate tool discovery and usage
+
+## Example MCP Server URL Formats
+
+**AgentCore Runtime URL:**
+
+```text
+https://bedrock-agentcore.[AWS_REGION].amazonaws.com/runtimes/[RUNTIME_ID]/invocations?qualifier=DEFAULT&accountId=[AWS_ACCOUNT_ID]
+```
+
+**AgentCore Gateway URL:**
+
+```text
+https://[GATEWAY_ID].gateway.bedrock-agentcore.[AWS_REGION].amazonaws.com/mcp
+```
+
+## Troubleshooting
+
+### Common Issues
+
+#### No AWS credentials available
+
+- Verify AWS credentials are configured ([AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html), environment variables, or IAM roles)
+- Test with `aws sts get-caller-identity`
+
+#### Missing environment variables
+
+- Ensure all required variables are set: `MCP_SERVER_URL`, `MCP_SERVER_REGION`, `MCP_SERVER_AWS_SERVICE`, and `OPENAI_API_KEY`
+- Check your `.env` file or environment variable configuration
+
+#### Connection errors
+
+- Verify your MCP server details are correct
+- Ensure the MCP server is running and accessible
+- Verify your AWS credentials have the necessary permissions to access the MCP server