Auth stack for AI apps β‘ Official Scalekit MCP Server
Official Model Context Protocol server for AI agents to interact with Scalekit's identity platform through natural language
- Natural Language Identity Management: Manage users, organizations, and connections through AI conversations
- OAuth-Protected Access: Secure AI agent interactions with enterprise authentication
- Comprehensive API Coverage: Full access to Scalekit's identity and access management capabilities
- Multi-Client Support: Works with Claude Desktop, VS Code, Cursor, Windsurf, and other MCP clients
This MCP server enables AI assistants to interact with Scalekit's identity and access management platform through a standardized set of tools. It provides secure, OAuth-protected access to manage environments, organizations, users, authentication connections, and more.
- Environment management and configuration
- Organization and user management
- Workspace member administration
- OIDC connection setup and management
- MCP server registration and configuration
- Role and scope management
- Admin portal link generation
| Using OAuth | Using mcp-remote proxy |
|---|---|
| VS Code (version 1.101 or greater) | |
{
"servers": {
"scalekit": {
"type": "http",
"url": "https://mcp.scalekit.com/"
}
}
} |
{
"mcpServers": {
"scalekit": {
"command": "npx",
"args": ["-y", "mcp-remote", "https://mcp.scalekit.com/"]
}
}
} |
Based on your MCP Host, configuration instructions to add Scalekit as an MCP Server can be found below:
Configure the Claude app to use the MCP server:
- Open the Claude Desktop app, go to Settings, then Developer
- Click Edit Config
- Open the claude_desktop_config.json file
- Copy and paste the server config to your existing file, then save
- Restart Claude
{
"mcpServers": {
"scalekit": {
"command": "npx",
"args": ["-y", "mcp-remote", "https://mcp.scalekit.com/"]
}
}
}Configure Cursor to use the MCP server:
- Open Cursor, go to Settings, then Cursor Settings
- Select MCP on the left
- Click Add "New Global MCP Server" at the top right
- Copy and paste the server config to your existing file, then save
- Restart Cursor
{
"mcpServers": {
"scalekit": {
"command": "npx",
"args": ["-y", "mcp-remote", "https://mcp.scalekit.com/"]
}
}
}Configure Windsurf to use the MCP server:
- Open Windsurf, go to Settings, then Developer
- Click Edit Config
- Open the windsurf_config.json file
- Copy and paste the server config to your existing file, then save
- Restart Windsurf
{
"mcpServers": {
"scalekit": {
"command": "npx",
"args": ["-y", "mcp-remote", "https://mcp.scalekit.com/"]
}
}
}- Description: List all available environments
- Scopes: Environment Read
- Description: Get environment details by ID (e.g., env_123)
- Parameters: environmentId
- Scopes: Environment Read
- Description: List all roles in the specified environment
- Parameters: environmentId (format: env_)
- Scopes: Environment Read
- Description: Create a new role in the specified environment
- Parameters:
- environmentId (format: env_)
- roleName
- displayName
- description
- isDefault (boolean)
- Scopes: Environment Write
- Description: List all scopes in the specified environment
- Parameters: environmentId (format: env_)
- Scopes: Environment Read
- Description: Create a new scope in the specified environment
- Parameters:
- environmentId (format: env_)
- scopeName
- description
- Scopes: Environment Write
- Description: List all members in the current workspace
- Parameters: pageToken (1-based index)
- Scopes: Workspace Read
- Description: Invite a new member to the current workspace
- Parameters: email
- Scopes: Workspace Write
- Description: List all organizations under the specified environment
- Parameters:
- environmentId (format: env_)
- pageToken
- Scopes: Organization Read
- Description: Get details of an organization by ID (e.g., org_123)
- Parameters:
- environmentId (format: env_)
- organizationId
- Scopes: Organization Read
- Description: Create a new organization under the specified environment
- Parameters: environmentId (format: env_)
- Scopes: Organization Write
- Description: Generate a magic link to the admin portal for the selected organization
- Parameters:
- environmentId (format: env_)
- organizationId (e.g., org_123)
- Scopes: Organization Write
- Description: Create a new user in the selected organization
- Parameters:
- environmentId (format: env_)
- organizationId
- externalId
- firstName
- lastName
- metadata (JSON key-value pairs)
- Scopes: Organization Write
- Description: List all users in the selected organization
- Parameters:
- environmentId (format: env_)
- organizationId
- pageToken
- Scopes: Organization Read
- Description: Update the settings of an organization
- Parameters:
- environmentId (format: env_)
- organizationId
- feature (JSON array of feature objects)
- Scopes: Organization Write
- Description: List all connections for the specified environment
- Parameters: environmentId (format: env_)
- Scopes: Environment Read
- Description: List all connections for the selected organization
- Parameters:
- environmentId (format: env_)
- organizationId (e.g., org_123)
- Scopes: Organization Read
- Description: Create a new OIDC connection for the specified environment
- Parameters:
- environmentId (format: env_)
- provider (OKTA, GOOGLE, MICROSOFT_AD, AUTH0, ONELOGIN, PING_IDENTITY, JUMPCLOUD, CUSTOM, GITHUB, GITLAB, LINKEDIN, SALESFORCE, MICROSOFT, IDP_SIMULATOR, SCALEKIT, ADFS)
- Scopes: Environment Write
- Description: Update an existing OIDC connection for the specified environment
- Parameters:
- environmentId (format: env_)
- connectionId (e.g., conn_123)
- key_id
- provider
- oidc_config (comprehensive OIDC configuration object)
- Scopes: Environment Write
- Description: Enable an existing connection for the specified environment
- Parameters:
- environmentId (format: env_)
- connectionId (e.g., conn_123)
- Scopes: Environment Write
- Description: List all MCP servers in the specified environment
- Parameters:
- environmentId (format: env_)
- pageToken
- Scopes: Environment Read
- Description: Register a new MCP server in the specified environment
- Parameters:
- environmentId (format: env_)
- name
- description
- url
- access_token_expiry (in seconds)
- provider (optional, required when use_scalekit_authentication is false)
- use_scalekit_authentication (boolean)
- Scopes: Environment Write
- Description: Update an existing MCP server in the specified environment
- Parameters:
- environmentId (format: env_)
- id (MCP server ID)
- name (optional)
- description (optional)
- url (optional)
- access_token_expiry (optional, in seconds)
- provider (optional)
- use_scalekit_authentication (optional boolean)
- Scopes: Environment Write
- Description: Switch the authentication of an existing MCP server to Scalekit authentication
- Parameters:
- environmentId (format: env_)
- id (MCP server ID)
- Scopes: Environment Write
- Environment Management: Create and configure Scalekit environments
- Organization Operations: Manage enterprise organizations and their settings
- User Administration: Handle user lifecycle and permissions
- Connection Management: Configure SAML/OIDC identity provider connections
- Workspace Administration: Manage team members and roles
- Portal Integration: Generate admin portal links and manage access
- MCP Server Registry: Register and configure additional MCP servers
Scalekit MCP server uses OAuth 2.1 for secure authentication. When you register the MCP server with your client, an OAuth authorization workflow ensures secure, token-based communication between your AI agent and Scalekit's platform.
- π Scalekit Documentation
- π§ API Reference
- π Full Stack Auth Quickstart
- π¬ Community Examples
- β‘ Model Context Protocol Spec
Note
Building your own OAuth-protected MCP server? Check out our Auth for MCP Servers guide for implementation patterns.
Made with β€οΈ by Scalekit