Refactor HTTP request initialization to eliminate duplicate code pattern (#937)

The `internal/mcp/connection.go` file contained duplicate HTTP request
initialization workflow across `initializeHTTPSession` and
`sendHTTPRequest` methods, differing only in header customization logic.
This made the codebase harder to maintain and inconsistent for future
HTTP-related changes.

## Changes

- **Extracted `executeHTTPRequest` helper function** that consolidates
the common pattern: create JSON-RPC request → marshal → setup HTTP →
execute → read response
- Returns `httpRequestResult` struct containing status code, response
body, and headers
- Accepts optional `headerModifier` callback for caller-specific header
customization
- Provides consistent connection error handling with method-specific
error messages

- **Refactored `initializeHTTPSession`** to use the helper with session
ID header management

- **Refactored `sendHTTPRequest`** to use the helper with context-based
session ID priority handling

## Example

Before (duplicated in both methods):
```go
request := createJSONRPCRequest(requestID, method, params)
requestBody, err := json.Marshal(request)
// ... marshal error handling
httpReq, err := setupHTTPRequest(ctx, c.httpURL, requestBody, c.headers)
// ... setup error handling
httpResp, err := c.httpClient.Do(httpReq)
// ... connection error handling
defer httpResp.Body.Close()
responseBody, err := io.ReadAll(httpResp.Body)
// ... read error handling
```

After (single location):
```go
result, err := c.executeHTTPRequest(ctx, method, params, requestID, func(httpReq *http.Request) {
    // Caller-specific header customization
    httpReq.Header.Set("Mcp-Session-Id", sessionID)
})
```

## Impact

- Future HTTP changes (timeouts, retries, logging) require updates in
one location
- Consistent error messages across all HTTP operations
- Net change: +105 lines, -99 lines (new struct and documentation)

> [!WARNING]
>
> <details>
> <summary>Firewall rules blocked me from connecting to one or more
addresses (expand for details)</summary>
>
> #### I tried to connect to the following addresses, but was blocked by
firewall rules:
>
> - `example.com`
> - Triggering command: `/tmp/go-build3466960917/b275/launcher.test
/tmp/go-build3466960917/b275/launcher.test
-test.testlogfile=/tmp/go-build3466960917/b275/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true 64/src/net /bin/sh`
(dns block)
> - Triggering command: `/tmp/go-build3643262344/b275/launcher.test
/tmp/go-build3643262344/b275/launcher.test
-test.testlogfile=/tmp/go-build3643262344/b275/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
/opt/hostedtoolcache/go/1.25.7/x64/src/net
ache/go/1.25.7/x64/src/crypto/internal/fips140hash/hash.go /usr/bin/gcc
--gdwarf-5 --64 -o /usr/bin/gcc -I
/opt/hostedtoolcache/go/1.25.7/x64/src/net -fPIC
64/pkg/tool/linux_amd64/vet -pthread -Wl,--no-gc-sect-d
-fmessage-length=0 64/pkg/tool/linux_amd64/vet` (dns block)
> - Triggering command: `/tmp/go-build3690481232/b279/launcher.test
/tmp/go-build3690481232/b279/launcher.test
-test.testlogfile=/tmp/go-build3690481232/b279/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
/home/REDACTED/work/gh-aw-mcpg/gh-aw-mcpg/internal/envutil/envutil.go
/home/REDACTED/work/gh-aw-mcpg/gh-aw-mcpg/internal/envutil/envutil_test.go
ache/uv/0.10.2/x86_64/git elect.go nix.go
64/pkg/tool/linu/tmp/go-build4145022949/b166/vet.cfg bash /usr��
--version T.md d
ache/go/1.25.7/x/opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linux_amd64/vet
-trimpath /x86_64-linux-gn/tmp/go-build4145022949/b183/vet.cfg
/usr/bin/runc.original` (dns block)
> - `invalid-host-that-does-not-exist-12345.com`
> - Triggering command: `/tmp/go-build3466960917/b260/config.test
/tmp/go-build3466960917/b260/config.test
-test.testlogfile=/tmp/go-build3466960917/b260/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true 64/src/net node
cal/bin/as --output-format stream-json cal/bin/which 01.o -p 64/src/net
client.go 64/pkg/tool/linux_amd64/compile -I
/tmp/go-build271-unsafeptr=false -I
64/pkg/tool/linu/tmp/go-build3466960917/b144/vet.cfg` (dns block)
> - `nonexistent.local`
> - Triggering command: `/tmp/go-build3466960917/b275/launcher.test
/tmp/go-build3466960917/b275/launcher.test
-test.testlogfile=/tmp/go-build3466960917/b275/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true 64/src/net /bin/sh`
(dns block)
> - Triggering command: `/tmp/go-build3643262344/b275/launcher.test
/tmp/go-build3643262344/b275/launcher.test
-test.testlogfile=/tmp/go-build3643262344/b275/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
/opt/hostedtoolcache/go/1.25.7/x64/src/net
ache/go/1.25.7/x64/src/crypto/internal/fips140hash/hash.go /usr/bin/gcc
--gdwarf-5 --64 -o /usr/bin/gcc -I
/opt/hostedtoolcache/go/1.25.7/x64/src/net -fPIC
64/pkg/tool/linux_amd64/vet -pthread -Wl,--no-gc-sect-d
-fmessage-length=0 64/pkg/tool/linux_amd64/vet` (dns block)
> - Triggering command: `/tmp/go-build3690481232/b279/launcher.test
/tmp/go-build3690481232/b279/launcher.test
-test.testlogfile=/tmp/go-build3690481232/b279/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
/home/REDACTED/work/gh-aw-mcpg/gh-aw-mcpg/internal/envutil/envutil.go
/home/REDACTED/work/gh-aw-mcpg/gh-aw-mcpg/internal/envutil/envutil_test.go
ache/uv/0.10.2/x86_64/git elect.go nix.go
64/pkg/tool/linu/tmp/go-build4145022949/b166/vet.cfg bash /usr��
--version T.md d
ache/go/1.25.7/x/opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linux_amd64/vet
-trimpath /x86_64-linux-gn/tmp/go-build4145022949/b183/vet.cfg
/usr/bin/runc.original` (dns block)
> - `slow.example.com`
> - Triggering command: `/tmp/go-build3466960917/b275/launcher.test
/tmp/go-build3466960917/b275/launcher.test
-test.testlogfile=/tmp/go-build3466960917/b275/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true 64/src/net /bin/sh`
(dns block)
> - Triggering command: `/tmp/go-build3643262344/b275/launcher.test
/tmp/go-build3643262344/b275/launcher.test
-test.testlogfile=/tmp/go-build3643262344/b275/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
/opt/hostedtoolcache/go/1.25.7/x64/src/net
ache/go/1.25.7/x64/src/crypto/internal/fips140hash/hash.go /usr/bin/gcc
--gdwarf-5 --64 -o /usr/bin/gcc -I
/opt/hostedtoolcache/go/1.25.7/x64/src/net -fPIC
64/pkg/tool/linux_amd64/vet -pthread -Wl,--no-gc-sect-d
-fmessage-length=0 64/pkg/tool/linux_amd64/vet` (dns block)
> - Triggering command: `/tmp/go-build3690481232/b279/launcher.test
/tmp/go-build3690481232/b279/launcher.test
-test.testlogfile=/tmp/go-build3690481232/b279/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
/home/REDACTED/work/gh-aw-mcpg/gh-aw-mcpg/internal/envutil/envutil.go
/home/REDACTED/work/gh-aw-mcpg/gh-aw-mcpg/internal/envutil/envutil_test.go
ache/uv/0.10.2/x86_64/git elect.go nix.go
64/pkg/tool/linu/tmp/go-build4145022949/b166/vet.cfg bash /usr��
--version T.md d
ache/go/1.25.7/x/opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linux_amd64/vet
-trimpath /x86_64-linux-gn/tmp/go-build4145022949/b183/vet.cfg
/usr/bin/runc.original` (dns block)
> - `this-host-does-not-exist-12345.com`
> - Triggering command: `/tmp/go-build3466960917/b284/mcp.test
/tmp/go-build3466960917/b284/mcp.test
-test.testlogfile=/tmp/go-build3466960917/b284/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true g_.a -trimpath
ache/go/1.25.7/x64/pkg/tool/linux_amd64/asm 2690816/b098/ strings ctor
ache/go/1.25.7/x/tmp/go-build3466960917/b205/vet.cfg -I fips140/sha3
gkWDTCvzb 2690816/b130=&gt; --gdwarf-5 2690816/b130/ -o
ache/go/1.25.7/x64/pkg/include` (dns block)
> - Triggering command: `/tmp/go-build330381427/b001/mcp.test
/tmp/go-build330381427/b001/mcp.test
-test.testlogfile=/tmp/go-build330381427/b001/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
-test.run=TestNewHTTPConnection|TestSendHTTPRequest|Test.*HTTP .cfg
64/pkg/tool/linux_amd64/vet -D GOAMD64_v1 -gensymabis
64/pkg/tool/linux_amd64/vet s#\.�� 64/src/runtime/trace/annotation.-s
.cfg ache/go/1.25.7/x64/pkg/tool/linu-buildmode=exe rsions$# d;
base64 HEAD 64/pkg/tool/linu-o ache/go/1.25.7/x64/pkg/tool/linuHEAD`
(dns block)
> - Triggering command: `/tmp/go-build2307564073/b001/mcp.test
/tmp/go-build2307564073/b001/mcp.test
-test.testlogfile=/tmp/go-build2307564073/b001/testlog.txt
-test.paniconexit0 -test.timeout=10m0s -test.v=true
-test.run=TestNewHTTPConnection.*
64/pkg/tool/linu-plugin-opt=/usr/libexec/gcc/x86_64-linux-gnu/13/lto-wrapper
ache/go/1.25.7/x64/pkg/tool/linux_amd64/vet go syscall/unix/at.-d
x_amd64/compile ache/go/1.25.7/x64/pkg/tool/linux_amd64/vet` (dns block)
>
> If you need me to access, download, or install something from one of
these locations, you can either:
>
> - Configure [Actions setup
steps](https://gh.io/copilot/actions-setup-steps) to set up my
environment, which run before the firewall is enabled
> - Add the appropriate URLs or hosts to the custom allowlist in this
repository's [Copilot coding agent
settings](https://github.com/github/gh-aw-mcpg/settings/copilot/coding_agent)
(admins only)
>
> </details>

<!-- START COPILOT ORIGINAL PROMPT -->



<details>

<summary>Original prompt</summary>


----

*This section details on the original issue you should resolve*

<issue_title>[duplicate-code] Duplicate Code Pattern: HTTP Request
Initialization in MCP Connection</issue_title>
<issue_description># 🔍 Duplicate Code Pattern: HTTP Request
Initialization

*Part of duplicate code analysis: #892*

## Summary

The `internal/mcp/connection.go` file contains **2 nearly identical
instances** of HTTP request initialization workflow, differing only in
the RPC method name. This pattern appears in both
`initializeHTTPSession` and `sendHTTPRequest` methods.

## Duplication Details

### Pattern: HTTP Request Creation Workflow
- **Severity**: Medium
- **Occurrences**: 2 instances in connection.go
- **Locations**:
- `internal/mcp/connection.go` (lines 576-625) - initializeHTTPSession
method
- `internal/mcp/connection.go` (lines 678-726) - sendHTTPRequest method

- **Code Sample**:
``````go
// Duplicated pattern (appears 2 times with minor variations):

// 1. Create JSON-RPC request
request := createJSONRPCRequest(requestID, method, params)

// 2. Marshal request body
requestBody, err := json.Marshal(request)
if err != nil {
    return ..., fmt.Errorf("failed to marshal request: %w", err)
}

// 3. Create HTTP request
httpReq, err := setupHTTPRequest(ctx, c.httpURL, requestBody, c.headers)
if err != nil {
    return ..., err
}

// 4. Execute HTTP request
httpResp, err := c.httpClient.Do(httpReq)
if err != nil {
    if isHTTPConnectionError(err) {
        return ..., fmt.Errorf("cannot connect to HTTP backend at %s: %w", c.httpURL, err)
    }
    return ..., fmt.Errorf("HTTP request failed: %w", err)
}
defer httpResp.Body.Close()

// 5. Read response body
responseBody, err := io.ReadAll(httpResp.Body)
if err != nil {
    return ..., fmt.Errorf("failed to read response: %w", err)
}

// 6. Parse response (method-specific)
...
``````

## Impact Analysis

- **Maintainability**: Any change to HTTP request handling (e.g.,
timeout logic, retry mechanism, logging) requires updating 2 locations
- **Bug Risk**: Medium - If HTTP error handling is updated in one method
but not the other, behavior becomes inconsistent
- **Code Bloat**: ~35 lines of duplicated code (steps 1-5 above)
- **Extensibility**: Adding new HTTP-based MCP methods would require
copying this entire pattern again

## Refactoring Recommendations

### 1. **Extract Helper Function: executeHTTPRequest**
   - Create a shared helper function in `internal/mcp/connection.go`:
   ``````go
// executeHTTPRequest executes an HTTP JSON-RPC request and returns the
raw response body
func (c *Connection) executeHTTPRequest(ctx context.Context, method
string, params interface{}, requestID int) ([]byte, error) {
       // Create JSON-RPC request
       request := createJSONRPCRequest(requestID, method, params)
       
       // Marshal request body
       requestBody, err := json.Marshal(request)
       if err != nil {
return nil, fmt.Errorf("failed to marshal %s request: %w", method, err)
       }
       
       // Create HTTP request
httpReq, err := setupHTTPRequest(ctx, c.httpURL, requestBody, c.headers)
       if err != nil {
           return nil, err
       }
       
       // Execute HTTP request
       httpResp, err := c.httpClient.Do(httpReq)
       if err != nil {
           if isHTTPConnectionError(err) {
return nil, fmt.Errorf("cannot connect to HTTP backend at %s: %w",
c.httpURL, err)
           }
return nil, fmt.Errorf("%s HTTP request failed: %w", method, err)
       }
       defer httpResp.Body.Close()
       
       // Read response body
       responseBody, err := io.ReadAll(httpResp.Body)
       if err != nil {
return nil, fmt.Errorf("failed to read %s response: %w", method, err)
       }
       
       return responseBody, nil
   }
   ``````
   
   - Update both methods:
   ``````go
   // In initializeHTTPSession:
responseBody, err := c.executeHTTPRequest(context.Background(),
"initialize", initParams, requestID)
   if err != nil {
       return "", err
   }
   // ... parse response ...
   
   // In sendHTTPRequest:
responseBody, err := c.executeHTTPRequest(ctx, method, params,
requestID)
   if err != nil {
       return nil, err
   }
   // ... parse response ...
   ``````
   
   - Estimated effort: 2-3 hours
   - Benefits:
     - Single location for HTTP request execution logic
     - Easier to add retry logic, request/response logging, or timeouts
     - Consistent error messages across all HTTP operations
     - Reduces file from 1,011 lines to ~976 lines

### 2. **Future Enhancement: Add Request/Response Logging**
   - Once extracted, the helper function becomes an ideal place to add:
     - Debug logging for request/response payloads
     - Request timing metrics
     - Retry logic with exponential backoff
   - These enhancements would automatically apply to all HTTP operations

## Implementation Checklist

- [ ] Review duplication findings with team
- [ ] Create h...

</details>



<!-- START COPILOT CODING AGENT SUFFIX -->

- Fixes #893

Author: lpcox

internal/mcp/connection.go

@@ -170,6 +170,62 @@ func setupHTTPRequest(ctx context.Context, url string, requestBody []byte, heade
 	return httpReq, nil
 }
 
+// httpRequestResult contains the result of an HTTP request execution
+type httpRequestResult struct {
+	StatusCode   int
+	ResponseBody []byte
+	Header       http.Header
+}
+
+// executeHTTPRequest executes an HTTP JSON-RPC request and returns the response details.
+// This helper consolidates the common pattern of: create request → marshal → setup HTTP → execute → read response.
+// It handles connection errors consistently and provides method-specific error messages.
+// The headerModifier function allows callers to modify headers before the request is sent.
+func (c *Connection) executeHTTPRequest(ctx context.Context, method string, params interface{}, requestID uint64, headerModifier func(*http.Request)) (*httpRequestResult, error) {
+	// Create JSON-RPC request
+	request := createJSONRPCRequest(requestID, method, params)
+
+	// Marshal request body
+	requestBody, err := json.Marshal(request)
+	if err != nil {
+		return nil, fmt.Errorf("failed to marshal %s request: %w", method, err)
+	}
+
+	// Create HTTP request with standard headers
+	httpReq, err := setupHTTPRequest(ctx, c.httpURL, requestBody, c.headers)
+	if err != nil {
+		return nil, err
+	}
+
+	// Allow caller to modify headers (e.g., add session ID)
+	if headerModifier != nil {
+		headerModifier(httpReq)
+	}
+
+	// Execute HTTP request
+	httpResp, err := c.httpClient.Do(httpReq)
+	if err != nil {
+		// Check if it's a connection error (cannot connect at all)
+		if isHTTPConnectionError(err) {
+			return nil, fmt.Errorf("cannot connect to HTTP backend at %s: %w", c.httpURL, err)
+		}
+		return nil, fmt.Errorf("%s HTTP request failed: %w", method, err)
+	}
+	defer httpResp.Body.Close()
+
+	// Read response body
+	responseBody, err := io.ReadAll(httpResp.Body)
+	if err != nil {
+		return nil, fmt.Errorf("failed to read %s response: %w", method, err)
+	}
+
+	return &httpRequestResult{
+		StatusCode:   httpResp.StatusCode,
+		ResponseBody: responseBody,
+		Header:       httpResp.Header,
+	}, nil
+}
+
 // NewConnection creates a new MCP connection using the official SDK
 func NewConnection(ctx context.Context, serverID, command string, args []string, env map[string]string) (*Connection, error) {
 	logger.LogInfo("backend", "Creating new MCP backend connection, command=%s, args=%v", command, sanitize.SanitizeArgs(args))
@@ -573,42 +629,23 @@ func (c *Connection) initializeHTTPSession() (string, error) {
 		},
 	}
 
-	request := createJSONRPCRequest(requestID, "initialize", initParams)
-
-	requestBody, err := json.Marshal(request)
-	if err != nil {
-		return "", fmt.Errorf("failed to marshal initialize request: %w", err)
-	}
-
-	logConn.Printf("Sending initialize request: %s", string(requestBody))
-
-	// Create HTTP request with standard headers
-	httpReq, err := setupHTTPRequest(context.Background(), c.httpURL, requestBody, c.headers)
-	if err != nil {
-		return "", err
-	}
+	logConn.Printf("Sending initialize request")
 
 	// Generate a temporary session ID for the initialize request
 	// Some backends may require this header even during initialization
 	tempSessionID := fmt.Sprintf("awmg-init-%d", requestID)
-	httpReq.Header.Set("Mcp-Session-Id", tempSessionID)
-	logConn.Printf("Sending initialize with temporary session ID: %s", tempSessionID)
 
-	logConn.Printf("Sending initialize to %s", c.httpURL)
-
-	// Send request
-	httpResp, err := c.httpClient.Do(httpReq)
+	// Execute HTTP request with custom header modification
+	result, err := c.executeHTTPRequest(context.Background(), "initialize", initParams, requestID, func(httpReq *http.Request) {
+		httpReq.Header.Set("Mcp-Session-Id", tempSessionID)
+		logConn.Printf("Sending initialize with temporary session ID: %s", tempSessionID)
+	})
 	if err != nil {
-		// Check if it's a connection error (cannot connect at all)
-		if isHTTPConnectionError(err) {
-			return "", fmt.Errorf("cannot connect to HTTP backend at %s: %w", c.httpURL, err)
-		}
-		return "", fmt.Errorf("failed to send initialize request to %s: %w", c.httpURL, err)
+		return "", err
 	}
-	defer httpResp.Body.Close()
 
 	// Capture the Mcp-Session-Id from response headers
-	sessionID := httpResp.Header.Get("Mcp-Session-Id")
+	sessionID := result.Header.Get("Mcp-Session-Id")
 	if sessionID != "" {
 		logConn.Printf("Captured Mcp-Session-Id from response: %s", sessionID)
 	} else {
@@ -618,31 +655,25 @@ func (c *Connection) initializeHTTPSession() (string, error) {
 		logConn.Printf("No Mcp-Session-Id in response, using temporary session ID: %s", sessionID)
 	}
 
-	// Read response body
-	responseBody, err := io.ReadAll(httpResp.Body)
-	if err != nil {
-		return "", fmt.Errorf("failed to read initialize response: %w", err)
-	}
-
-	logConn.Printf("Initialize response: status=%d, body_len=%d, session=%s", httpResp.StatusCode, len(responseBody), sessionID)
+	logConn.Printf("Initialize response: status=%d, body_len=%d, session=%s", result.StatusCode, len(result.ResponseBody), sessionID)
 
 	// Check for HTTP errors
-	if httpResp.StatusCode != http.StatusOK {
-		return "", fmt.Errorf("initialize failed: status=%d, body=%s", httpResp.StatusCode, string(responseBody))
+	if result.StatusCode != http.StatusOK {
+		return "", fmt.Errorf("initialize failed: status=%d, body=%s", result.StatusCode, string(result.ResponseBody))
 	}
 
 	// Parse JSON-RPC response to check for errors
 	// The response might be in SSE format (event: message\ndata: {...})
 	// Try to parse as JSON first, if that fails, try SSE format
 	var rpcResponse Response
 
-	if err := json.Unmarshal(responseBody, &rpcResponse); err != nil {
+	if err := json.Unmarshal(result.ResponseBody, &rpcResponse); err != nil {
 		// Try parsing as SSE format
 		logConn.Printf("Initial JSON parse failed, attempting SSE format parsing")
-		sseData, sseErr := parseSSEResponse(responseBody)
+		sseData, sseErr := parseSSEResponse(result.ResponseBody)
 		if sseErr != nil {
 			// Include the response body to help debug what the server actually returned
-			bodyPreview := string(responseBody)
+			bodyPreview := string(result.ResponseBody)
 			if len(bodyPreview) > 500 {
 				bodyPreview = bodyPreview[:500] + "... (truncated)"
 			}
@@ -674,84 +705,59 @@ func (c *Connection) sendHTTPRequest(ctx context.Context, method string, params
 		params = ensureToolCallArguments(params)
 	}
 
-	// Create JSON-RPC request
-	request := createJSONRPCRequest(requestID, method, params)
-
-	requestBody, err := json.Marshal(request)
-	if err != nil {
-		return nil, fmt.Errorf("failed to marshal request: %w", err)
-	}
-
-	// Create HTTP request with standard headers
-	httpReq, err := setupHTTPRequest(ctx, c.httpURL, requestBody, c.headers)
-	if err != nil {
-		return nil, err
-	}
-
-	// Add Mcp-Session-Id header with priority:
-	// 1) Context session ID (if explicitly provided for this request)
-	// 2) Stored httpSessionID from initialization
-	var sessionID string
-	if ctxSessionID, ok := ctx.Value(SessionIDContextKey).(string); ok && ctxSessionID != "" {
-		sessionID = ctxSessionID
-		logConn.Printf("Using session ID from context: %s", sessionID)
-	} else if c.httpSessionID != "" {
-		sessionID = c.httpSessionID
-		logConn.Printf("Using stored session ID from initialization: %s", sessionID)
-	}
-
-	if sessionID != "" {
-		httpReq.Header.Set("Mcp-Session-Id", sessionID)
-	} else {
-		logConn.Printf("No session ID available (backend may not require session management)")
-	}
-
 	logConn.Printf("Sending HTTP request to %s: method=%s, id=%d", c.httpURL, method, requestID)
 
-	// Send request using the reusable HTTP client
-	httpResp, err := c.httpClient.Do(httpReq)
-	if err != nil {
-		// Check if it's a connection error (cannot connect at all)
-		if isHTTPConnectionError(err) {
-			return nil, fmt.Errorf("cannot connect to HTTP backend at %s: %w", c.httpURL, err)
+	// Execute HTTP request with custom header modification for session ID
+	result, err := c.executeHTTPRequest(ctx, method, params, requestID, func(httpReq *http.Request) {
+		// Add Mcp-Session-Id header with priority:
+		// 1) Context session ID (if explicitly provided for this request)
+		// 2) Stored httpSessionID from initialization
+		var sessionID string
+		if ctxSessionID, ok := ctx.Value(SessionIDContextKey).(string); ok && ctxSessionID != "" {
+			sessionID = ctxSessionID
+			logConn.Printf("Using session ID from context: %s", sessionID)
+		} else if c.httpSessionID != "" {
+			sessionID = c.httpSessionID
+			logConn.Printf("Using stored session ID from initialization: %s", sessionID)
 		}
-		return nil, fmt.Errorf("failed to send HTTP request to %s: %w", c.httpURL, err)
-	}
-	defer httpResp.Body.Close()
 
-	// Read response
-	responseBody, err := io.ReadAll(httpResp.Body)
+		if sessionID != "" {
+			httpReq.Header.Set("Mcp-Session-Id", sessionID)
+		} else {
+			logConn.Printf("No session ID available (backend may not require session management)")
+		}
+	})
 	if err != nil {
-		return nil, fmt.Errorf("failed to read HTTP response: %w", err)
+		return nil, err
 	}
 
-	logConn.Printf("Received HTTP response: status=%d, body_len=%d", httpResp.StatusCode, len(responseBody))
+	logConn.Printf("Received HTTP response: status=%d, body_len=%d", result.StatusCode, len(result.ResponseBody))
 
 	// Parse JSON-RPC response
 	// The response might be in SSE format (event: message\ndata: {...})
 	// Try to parse as JSON first, if that fails, try SSE format
 	var rpcResponse Response
 
-	if err := json.Unmarshal(responseBody, &rpcResponse); err != nil {
+	if err := json.Unmarshal(result.ResponseBody, &rpcResponse); err != nil {
 		// Try parsing as SSE format
 		logConn.Printf("Initial JSON parse failed, attempting SSE format parsing")
-		sseData, sseErr := parseSSEResponse(responseBody)
+		sseData, sseErr := parseSSEResponse(result.ResponseBody)
 		if sseErr != nil {
 			// If we have a non-OK HTTP status and can't parse the response,
 			// construct a JSON-RPC error response with HTTP error details
-			if httpResp.StatusCode != http.StatusOK {
-				logConn.Printf("HTTP error status=%d, body cannot be parsed as JSON-RPC", httpResp.StatusCode)
+			if result.StatusCode != http.StatusOK {
+				logConn.Printf("HTTP error status=%d, body cannot be parsed as JSON-RPC", result.StatusCode)
 				return &Response{
 					JSONRPC: "2.0",
 					Error: &ResponseError{
 						Code:    -32603, // Internal error
-						Message: fmt.Sprintf("HTTP %d: %s", httpResp.StatusCode, http.StatusText(httpResp.StatusCode)),
-						Data:    json.RawMessage(responseBody),
+						Message: fmt.Sprintf("HTTP %d: %s", result.StatusCode, http.StatusText(result.StatusCode)),
+						Data:    json.RawMessage(result.ResponseBody),
 					},
 				}, nil
 			}
 			// Include the response body to help debug what the server actually returned
-			bodyPreview := string(responseBody)
+			bodyPreview := string(result.ResponseBody)
 			if len(bodyPreview) > 500 {
 				bodyPreview = bodyPreview[:500] + "... (truncated)"
 			}
@@ -762,14 +768,14 @@ func (c *Connection) sendHTTPRequest(ctx context.Context, method string, params
 		if err := json.Unmarshal(sseData, &rpcResponse); err != nil {
 			// If we have a non-OK HTTP status and can't parse the SSE data,
 			// construct a JSON-RPC error response with HTTP error details
-			if httpResp.StatusCode != http.StatusOK {
-				logConn.Printf("HTTP error status=%d, SSE data cannot be parsed as JSON-RPC", httpResp.StatusCode)
+			if result.StatusCode != http.StatusOK {
+				logConn.Printf("HTTP error status=%d, SSE data cannot be parsed as JSON-RPC", result.StatusCode)
 				return &Response{
 					JSONRPC: "2.0",
 					Error: &ResponseError{
 						Code:    -32603, // Internal error
-						Message: fmt.Sprintf("HTTP %d: %s", httpResp.StatusCode, http.StatusText(httpResp.StatusCode)),
-						Data:    json.RawMessage(responseBody),
+						Message: fmt.Sprintf("HTTP %d: %s", result.StatusCode, http.StatusText(result.StatusCode)),
+						Data:    json.RawMessage(result.ResponseBody),
 					},
 				}, nil
 			}
@@ -781,14 +787,14 @@ func (c *Connection) sendHTTPRequest(ctx context.Context, method string, params
 	// Check for HTTP errors after parsing
 	// If we have a non-OK status but successfully parsed a JSON-RPC response,
 	// pass it through (it may already contain an error field)
-	if httpResp.StatusCode != http.StatusOK {
-		logConn.Printf("HTTP error status=%d with valid JSON-RPC response, passing through", httpResp.StatusCode)
+	if result.StatusCode != http.StatusOK {
+		logConn.Printf("HTTP error status=%d with valid JSON-RPC response, passing through", result.StatusCode)
 		// If the response doesn't already have an error, construct one
 		if rpcResponse.Error == nil {
 			rpcResponse.Error = &ResponseError{
 				Code:    -32603, // Internal error
-				Message: fmt.Sprintf("HTTP %d: %s", httpResp.StatusCode, http.StatusText(httpResp.StatusCode)),
-				Data:    responseBody,
+				Message: fmt.Sprintf("HTTP %d: %s", result.StatusCode, http.StatusText(result.StatusCode)),
+				Data:    result.ResponseBody,
 			}
 		}
 	}

main.go

@@ -13,7 +13,7 @@ var log = logger.New("main:main")
 
 func main() {
 	log.Print("Starting MCP Gateway application")
-	
+
 	// Build version string with metadata
 	versionStr := buildVersionString()
 	log.Printf("Built version string: %s", versionStr)