Skip to content

asgardeo/asgardeo-mcp-server

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

64 Commits
.github
.github
 
 
assets
assets
 
 
internal
internal
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
issue_template.md
issue_template.md
 
 
main.go
main.go
 
 
pull_request_template.md
pull_request_template.md
 
 

Repository files navigation

Asgardeo MCP Server

The Asgardeo MCP Server allows you to manage your Asgardeo organization seamlessly using LLM tools, enabling natural language interactions for various configuration tasks.

Important

Experimental Feature Notice
This software includes experimental functionality and is not intended for use in production environments. Features, APIs, and functionality may change as the implementation evolves without prior notice.

Key Use Cases

With tools like Claude Desktop, you can:

  • List Applications: Retrieve a list of all applications in your Asgardeo organization.
  • Create Applications: Set up single-page, web, mobile or m2m applications and integrate it with the Asgardeo authentication SDK.
  • Retrieve Application Details: Fetch detailed information about specific applications.
  • Configure Login Flows: Customize the login flow of an application using natural language prompts and the available tools, enabling seamless user authentication experiences.

Demonstrations

  • Listing Applications in Claude
    Listing applications in Claude

  • Fetching Application Details in Claude
    Getting application details in Claude

How to Use

On Asgardeo

  1. Create an M2M Application: Set up an M2M application in your Asgardeo organization.
  2. Authorize Management APIs: Grant the following scopes to the application:
API Scopes
Application Management API (/api/server/v1/applications) internal_application_mgt_view, internal_application_mgt_update, internal_application_mgt_create
API Resource Management API (/api/server/v1/api-resources) internal_api_resource_update, internal_api_resource_create, internal_api_resource_view
Identity Provider Management API (/api/server/v1/identity-providers) internal_idp_view
Authenticators Management API (/api/server/v1/authenticators) internal_authenticator_view
Claim Management API (/api/server/v1/claim-dialects) internal_claim_meta_view
SCIM2 Users API (/scim2/Users) internal_user_mgt_create
OIDC Scope Management API (/api/server/v1/oidc/scopes) internal_oidc_scope_mgt_view
  1. Copy Credentials: Save the client ID and client secret of the M2M application.

On Your Machine

  1. Clone the Repository:
git clone <repository-url>
  1. Install Dependencies:
go mod tidy
  1. Build the Executable:
go build -o asgardeo-mcp
  1. Configure Your MCP Client:

VS Code (GitHub Copilot)

  • Install the GitHub Copilot extension.
  • Open VS Code Settings (File > Preferences > Settings).
  • Search for "MCP" and edit the settings.json file: 
    "mcp": {
  "servers": {
      "asgardeo-mcp-server": {
          "type": "stdio",
          "command": "<absolute path to the asgardeo-mcp executable, e.g., /Users/<user directory>/<repository path>/asgardeo-mcp-server/asgardeo-mcp>",
          "args": [],
          "env": {
              "ASGARDEO_BASE_URL" : "https://api.asgardeo.io/t/<asgardeo organization>",
              "ASGARDEO_CLIENT_ID" : "<client ID>",
              "ASGARDEO_CLIENT_SECRET" : "<client secret>"
            }
          }
  }
  }
  • Save the file and start the MCP server from settings.json.

Claude Desktop

  • Open Claude Desktop and navigate to Settings > Developer.
  • Edit the claude_desktop_config.json file: 
    "asgardeo-mcp": {
 "command": "<absolute path to the asgardeo-mcp executable, e.g., /Users/<user directory>/<repository path>/asgardeo-mcp-server/asgardeo-mcp>",
 "args": [],
 "env": {
  "ASGARDEO_BASE_URL": "https://api.asgardeo.io/t/<asgardeo organization>",
  "ASGARDEO_CLIENT_ID": "<client ID>",
  "ASGARDEO_CLIENT_SECRET": "<client secret>"
 }
}
  • Restart Claude Desktop.

Cursor

  • Open Cursor and navigate to Settings > MCP.
  • Edit the mcp.json file: 
    "asgardeo-mcp": {
 "command": "<absolute path to the asgardeo-mcp executable, e.g., /Users/<user directory>/<repository path>/asgardeo-mcp-server/asgardeo-mcp>",
 "args": [],
 "env": {
  "ASGARDEO_BASE_URL": "https://api.asgardeo.io/t/<asgardeo organization>",
  "ASGARDEO_CLIENT_ID": "<client ID>",
  "ASGARDEO_CLIENT_SECRET": "<client secret>"
 }
}

Available Tools

The Asgardeo MCP Server provides the following tools for interacting with your Asgardeo organization:

Application Management

Tool Name Description Parameters
list_applications Lists all applications in Asgardeo None
create_single_page_app Creates a new Single Page Application application_name (required): Name of the application
redirect_url (required): Redirect URL for the application
create_webapp_with_ssr Creates a new web application with server-side rendering application_name (required): Name of the application
redirect_url (required): Redirect URL for the application
create_mobile_app Creates a new Mobile Application application_name (required): Name of the application
redirect_url (required): Redirect URL for the application
create_m2m_app Creates a new Machine-to-Machine Application application_name (required): Name of the application
get_application_by_name Gets details of an application by name application_name (required): Name of the application to search for
get_application_by_client_id Gets details of an application by client ID client_id (required): Client ID of the application
update_application_basic_info Updates basic information of an application id (required): ID of the application
name, description, image_url, access_url, logout_return_url (optional)
update_application_oauth_config Updates OAuth/OIDC configurations of an application id (required): ID of the application
redirect_urls, allowed_origins, user_access_token_expiry_time, application_access_token_expiry_time, refresh_token_expiry_time, etc. (optional)
update_application_claim_config Updates claim configurations of an application id (required): ID of the application
claims (required): List of requested claim URIs (Claim URIs should be specified using the default WSO2 claim dialect. Eg: http://wso2.org/claims/username)
authorize_api Authorizes an application to access an API appId (required): ID of the application
id (required): ID of the API resource
policyIdentifier (required, default: "RBAC"): Authorization policy
scopes (required): Scopes to authorize
list_authorized_api Lists authorized API resources of an application app_id (required): ID of the application
update_login_flow Updates login flow in an application based on a natural language prompt app_id (required): ID of the application
user_prompt (required): Natural language description of the desired login flow

API Resource Management

Tool Name Description Parameters
list_api_resources Lists API resources in your Asgardeo organization filter (optional): Filter expression
limit (optional): Maximum results to return
search_api_resources_by_name Searches for API resources by name name (required): Name of the API resource to search for
get_api_resource_by_identifier Gets an API resource by its identifier identifier (required): Identifier of the API resource
create_api_resource Creates a new API resource identifier (required): Identifier for the API resource
name (required): Name of the API resource
requiresAuthorization (required): Whether the API requires authorization
scopes (required): List of scopes for the API

User Management

Tool Name Description Parameters
create_user Creates a user in your Asgardeo organization username (required): Username
password (required): Password
email (required): Email address
first_name (required): User's first name
last_name (required): User's last name
userstore_domain (optional, default: "DEFAULT"): Userstore domain

Claim Management

Tool Name Description Parameters
list_claims Lists claims in your Asgardeo organization None

Example Prompts

Application Management

  • Create a SPA:

    Create a new Single Page Application named "My Demo App" with redirect URL "https://example.com/callback".

  • Update Application:

    Update my application with ID "abc123" to have a new name "Updated App".

  • Update Application Login Flow:

    Update the login flow of my application with ID "abc123" to Username and Password as the first step and Email OTP as the second step.

  • Update Application Claim Configuration:

    Update the claim configuration of my application with ID "abc123" to include "username", and "last_name".

API Resource Management

  • Create and Authorize API: 
    Create a new API resource named "Customer API" and authorize my application to access it with "read:customers" scopes.

User Management

  • Create a User: 
    Create a test user with the username and email address 'test@example.com'.

Claim Management

  • Get Claim list: 
    List all claims in my Asgardeo organization.

Troubleshooting

Authentication & Permissions

  • Invalid Credentials: Verify your client ID, client secret, and organization name in the base URL
  • 403 Forbidden: Check if your M2M application has all required scopes authorized

Setup & Connection

  • Build Issues: Ensure Go 1.18+ is installed, run go mod tidy before building
  • MCP Connection: Verify executable path is absolute and correct, check permissions (chmod +x asgardeo-mcp)

Getting Help

If issues persist after troubleshooting:

  • Check GitHub issues
  • Create a new detailed issue including error messages and environment info
  • Join the WSO2 community forums for support

Contributing

Contributions are welcome! Submit issues or pull requests via the GitHub repository.

About

MCP server to interact with your Asgardeo organization through LLM tools

Topics

ai mcp agents llm

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

3 stars

Watchers

20 watching

Forks

4 forks
Report repository

Releases 2

v0.1.0 Latest
May 14, 2025
+ 1 release

Packages

No packages published

Contributors 5

Languages