This is different from the workspace-wide Softr MCP
Server, which exposes your Softr databases. The
App MCP Server is scoped to a single published app, uses that app’s
domain, and has its own OAuth credentials.
How permissions work
When an AI client connects, it does so as a signed-in user of your app, not as an admin and not as the app itself. Everything the assistant can see or do is capped by what that user could already do in the app’s interface. The MCP server never grants extra access. Concretely, the assistant’s capabilities are derived from the blocks you’ve built into the app:
This means the MCP surface mirrors your app’s screens:
- If there’s no block for a table, the assistant can’t touch that table, even if the underlying data source contains it.
- Fields are limited to those your blocks display. Hidden or unmapped fields stay invisible to the assistant.
- User groups, page visibility, and data restrictions all still apply. A user connecting through MCP sees exactly the records and actions their account would see when logged into the app normally.
Enabling MCP for your app
1
Open MCP settings
In the app’s left sidebar, open Settings → MCP.
2
Enable MCP
Click Enable MCP. Softr generates an OAuth Client ID and Client Secret for this app.
3
Connect an AI tool
Use one of the quick-setup cards (Claude, Claude Code, ChatGPT, Other) to connect a client. Each card walks you through the steps for that specific tool.
Server URL
Your app’s MCP endpoint follows your app’s published URL:https://acme.softr.app, the MCP server URL is https://acme.softr.app/v1/mcp. If you’ve added a custom domain, the MCP URL uses that domain. You can copy the exact URL from the Server URL field in MCP settings.
Connecting an AI tool
The setup dialog in MCP settings gives you a ready-to-use snippet for each supported client. You can also follow the steps manually.- Claude (web & desktop)
- Claude Code
- ChatGPT
- Other MCP clients
1
Open the connector setup
In Claude, go to Customize → Connectors → + → Add custom connector.
2
Add the server
Enter a name (for example, your app’s name) and paste the Server URL from MCP settings.
3
Authorize
Click Add. Claude opens a browser window to authorize the connection to your app via OAuth.
Advanced settings
Open the Advanced settings section in MCP settings to see and manage the OAuth credentials.Adding redirect URIs
Some AI clients require their callback URL to be pre-registered on the OAuth server. To add one:1
Open Advanced settings
Expand Advanced settings in your app’s MCP settings.
2
Add the URI
Click Add redirect URI and paste the callback URL the client provided.
3
Save
Click Save in the footer to persist the change.
Turning MCP off
Toggle Enable MCP off and click Save to disable the server without removing its credentials. Existing connected clients will stop being able to call the server until you re-enable it.Troubleshooting
My client still asks for the Client Secret after I pasted it inline
My client still asks for the Client Secret after I pasted it inline
Some CLIs (Claude Code included) treat
--client-secret as a
prompt-trigger flag, not a value flag. Any value you append inline is
ignored and the CLI prompts interactively. This is intentional so the secret
doesn’t appear in your shell history. Paste the secret at the prompt
instead.