Scalekit MCP Server

Auth stack for AI apps ⚡ Official Scalekit MCP Server

Official Model Context Protocol server for AI agents to interact with Scalekit's identity platform through natural language

🚀 What This MCP Server Enables

• Natural Language Identity Management: Manage users, organizations, and connections through AI conversations
• OAuth-Protected Access: Secure AI agent interactions with enterprise authentication
• Comprehensive API Coverage: Full access to Scalekit's identity and access management capabilities
• Multi-Client Support: Works with Claude Code, Claude Desktop, VS Code, Cursor, Windsurf, Gemini CLI, Codex, OpenCode, Roo Code, Zed, Kiro, Warp, v0 by Vercel, and any MCP-compatible client

Overview

This MCP server enables AI assistants to interact with Scalekit's identity and access management platform through a standardized set of tools. It provides secure, OAuth-protected access to manage environments, organizations, users, authentication connections, and more.

Features

• Environment management and configuration
• Organization and user management
• Workspace member administration
• OIDC connection setup and management
• MCP server registration and configuration
• Role and scope management
• Admin portal link generation

Configuration

Find your AI coding tool below and follow the steps — your client will prompt you to sign in via OAuth on first use.

Claude Code

claude mcp add --transport http scalekit https://mcp.scalekit.com/

Claude Desktop

1. Open Claude Desktop
2. Go to Settings → Connectors
3. Click Add custom connector
4. Enter Scalekit as the name and https://mcp.scalekit.com as the URL
5. Click Connect to authenticate

VS Code

Edit .vscode/mcp.json in your project (requires VS Code 1.101 or later):

{
  "servers": {
    "scalekit": {
      "type": "http",
      "url": "https://mcp.scalekit.com/"
    }
  }
}

Cursor

Edit ~/.cursor/mcp.json, or open Cursor Settings → MCP → Add New Global MCP Server and paste the config:

{
  "mcpServers": {
    "scalekit": {
      "url": "https://mcp.scalekit.com/"
    }
  }
}

Windsurf

Edit ~/.codeium/windsurf/mcp_config.json:

{
  "mcpServers": {
    "scalekit": {
      "serverUrl": "https://mcp.scalekit.com/"
    }
  }
}

Gemini CLI

Edit ~/.gemini/settings.json:

{
  "mcpServers": {
    "scalekit": {
      "httpUrl": "https://mcp.scalekit.com/"
    }
  }
}

Codex

codex mcp add scalekit --url https://mcp.scalekit.com/

OpenCode

Edit opencode.json in your project root:

{
  "mcp": {
    "scalekit": {
      "type": "remote",
      "url": "https://mcp.scalekit.com/",
      "enabled": true
    }
  }
}

Roo Code

{
  "mcpServers": {
    "scalekit": {
      "type": "streamable-http",
      "url": "https://mcp.scalekit.com/"
    }
  }
}

Zed

Add to your Zed settings.json:

{
  "context_servers": {
    "scalekit": {
      "url": "https://mcp.scalekit.com/"
    }
  }
}

Kiro

Edit ~/.kiro/settings/mcp.json:

{
  "mcpServers": {
    "scalekit": {
      "url": "https://mcp.scalekit.com/"
    }
  }
}

Warp

Go to Settings → MCP Servers → Add MCP Server and enter https://mcp.scalekit.com/, or add to your Warp MCP config:

{
  "scalekit": {
    "serverUrl": "https://mcp.scalekit.com/"
  }
}

v0 by Vercel

Go to Prompt Tools → Add MCP and enter https://mcp.scalekit.com/.

Available Tools

Environment Management

list_environments

• Description: List all available environments
• Scopes: Environment Read

get_environment_details

• Description: Get environment details by ID (e.g., env_123)
• Parameters: environmentId
• Scopes: Environment Read

list_environment_roles

• Description: List all roles in the specified environment
• Parameters: environmentId (format: env_)
• Scopes: Environment Read

create_environment_role

• Description: Create a new role in the specified environment
• Parameters:
  • environmentId (format: env_)
  • roleName
  • displayName
  • description
  • isDefault (boolean)
• Scopes: Environment Write

list_environment_scopes

• Description: List all scopes in the specified environment
• Parameters: environmentId (format: env_)
• Scopes: Environment Read

create_environment_scope

• Description: Create a new scope in the specified environment
• Parameters:
  • environmentId (format: env_)
  • scopeName
  • description
• Scopes: Environment Write

Workspace Management

list_workspace_members

• Description: List all members in the current workspace
• Parameters: pageToken (1-based index)
• Scopes: Workspace Read

invite_workspace_member

• Description: Invite a new member to the current workspace
• Parameters: email
• Scopes: Workspace Write

Organization Management

list_organizations

• Description: List all organizations under the specified environment
• Parameters:
  • environmentId (format: env_)
  • pageToken
• Scopes: Organization Read

get_organization_details

• Description: Get details of an organization by ID (e.g., org_123)
• Parameters:
  • environmentId (format: env_)
  • organizationId
• Scopes: Organization Read

create_organization

• Description: Create a new organization under the specified environment
• Parameters: environmentId (format: env_)
• Scopes: Organization Write

generate_admin_portal_link

• Description: Generate a magic link to the admin portal for the selected organization
• Parameters:
  • environmentId (format: env_)
  • organizationId (e.g., org_123)
• Scopes: Organization Write

create_organization_user

• Description: Create a new user in the selected organization
• Parameters:
  • environmentId (format: env_)
  • organizationId
  • email
  • externalId
  • firstName
  • lastName
  • metadata (JSON key-value pairs)
• Scopes: Organization Write

list_organization_users

• Description: List all users in the selected organization
• Parameters:
  • environmentId (format: env_)
  • organizationId
  • pageToken
• Scopes: Organization Read

update_organization_settings

• Description: Update the settings of an organization
• Parameters:
  • environmentId (format: env_)
  • organizationId
  • feature (JSON array of feature objects)
• Scopes: Organization Write

Connection Management

list_environment_connections

• Description: List all connections for the specified environment
• Parameters: environmentId (format: env_)
• Scopes: Environment Read

list_organization_connections

• Description: List all connections for the selected organization
• Parameters:
  • environmentId (format: env_)
  • organizationId (e.g., org_123)
• Scopes: Organization Read

create_environment_oidc_connection

• Description: Create a new OIDC connection for the specified environment
• Parameters:
  • environmentId (format: env_)
  • provider (OKTA, GOOGLE, MICROSOFT_AD, AUTH0, ONELOGIN, PING_IDENTITY, JUMPCLOUD, CUSTOM, GITHUB, GITLAB, LINKEDIN, SALESFORCE, MICROSOFT, IDP_SIMULATOR, SCALEKIT, ADFS)
• Scopes: Environment Write

update_environment_oidc_connection

• Description: Update an existing OIDC connection for the specified environment
• Parameters:
  • environmentId (format: env_)
  • connectionId (e.g., conn_123)
  • key_id
  • provider
  • oidc_config (comprehensive OIDC configuration object)
• Scopes: Environment Write

enable_environment_connection

• Description: Enable an existing connection for the specified environment
• Parameters:
  • environmentId (format: env_)
  • connectionId (e.g., conn_123)
• Scopes: Environment Write

MCP Server Management

list_mcp_servers

• Description: List all MCP servers in the specified environment
• Parameters:
  • environmentId (format: env_)
  • pageToken
• Scopes: Environment Read

register_mcp_server

• Description: Register a new MCP server in the specified environment
• Parameters:
  • environmentId (format: env_)
  • name
  • description
  • url
  • access_token_expiry (in seconds)
  • provider (optional, required when use_scalekit_authentication is false)
  • use_scalekit_authentication (boolean)
• Scopes: Environment Write

update_mcp_server

• Description: Update an existing MCP server in the specified environment
• Parameters:
  • environmentId (format: env_)
  • id (MCP server ID)
  • name (optional)
  • description (optional)
  • url (optional)
  • access_token_expiry (optional, in seconds)
  • provider (optional)
  • use_scalekit_authentication (optional boolean)
• Scopes: Environment Write

switch_mcp_auth_to_scalekit

• Description: Switch the authentication of an existing MCP server to Scalekit authentication
• Parameters:
  • environmentId (format: env_)
  • id (MCP server ID)
• Scopes: Environment Write

Key Capabilities

• Environment Management: Create and configure Scalekit environments
• Organization Operations: Manage enterprise organizations and their settings
• User Administration: Handle user lifecycle and permissions
• Connection Management: Configure SAML/OIDC identity provider connections
• Workspace Administration: Manage team members and roles
• Portal Integration: Generate admin portal links and manage access
• MCP Server Registry: Register and configure additional MCP servers

Authentication & Security

Scalekit MCP server uses OAuth 2.1 for secure authentication. When you register the MCP server with your client, an OAuth authorization workflow ensures secure, token-based communication between your AI agent and Scalekit's platform.

Additional Resources

• 📚 Scalekit Documentation
• 🔧 API Reference
• 🚀 Full Stack Auth Quickstart
• 💬 Community Examples
• ⚡ Model Context Protocol Spec

[!NOTE] Building your own OAuth-protected MCP server? Check out our Auth for MCP Servers guide for implementation patterns.

---

Made with ❤️ by Scalekit