MCP Management

Management MCP exposes admin operations (collections, proxies, workflows, etc.) as MCP tools.

Auth model (code-grounded)

• Requires Authorization: Bearer <OIDC token> on MCP calls.
• Auth is enforced by management OIDC/RBAC middleware.
• Do not use X-Client-ID / X-Profile-ID for Management MCP auth.

Protocol support

• JSON-RPC methods: initialize, tools/list, tools/call, prompts/list, prompts/get
• Session header: Mcp-Session-Id (same lifecycle as gateway MCP)
• OAuth protected resource metadata served at /.well-known/oauth-protected-resource

Endpoint path

Management MCP is mounted under "/api/v1" + MCP_MANAGEMENT_PATH.

• Common local/default deployment value: /api/v1/mcp
• Confirm your runtime value in your deployment environment configuration

Related docs

• Setup OIDC
• Tool Catalog
• RBAC And Audit
• Automation Patterns
• Troubleshooting Matrix