Skip to main content

MCP Server

The Flagsmith MCP Server gives AI assistants and agents access to the Flagsmith Admin API through the Model Context Protocol. On Flagsmith SaaS it is hosted for you at https://mcp.flagsmith.com. When you self-host Flagsmith, you run the server yourself as an additional container alongside your API.

It runs as a Docker container with no dependencies of its own: it talks to your Flagsmith API over HTTP, and MCP clients connect to it over Streamable HTTP.

Running the server

Point the server at your Flagsmith API with FLAGSMITH_API_URL and expose its HTTP port. The examples below assume your API is reachable at https://flagsmith.example.com and serve the MCP endpoint on port 8000.

docker run \
    -e FLAGSMITH_API_URL=https://flagsmith.example.com \
    -e MCP_SERVER_URL=https://mcp.flagsmith.example.com \
    -p 8000:8000 \
    flagsmith/flagsmith-mcp:latest

The server is reachable at /mcp, and also at the bare URL — a request to / is dispatched to the MCP endpoint, so clients that drop the /mcp suffix still work. Browsers that open the bare URL are redirected to this documentation.

The container serves plain HTTP; terminate TLS at a reverse proxy in front of it. Set MCP_SERVER_URL to the public https:// URL clients connect to (as in the examples above) so the OAuth metadata the server advertises matches the externally reachable address.

Running over stdio

For a single user on one machine, you don't need to host the server at all — the client can launch it as a local subprocess over stdio. This skips Docker and OAuth: point it at your API with FLAGSMITH_API_URL and authenticate with a static API key.

Run the published package directly with uv:

FLAGSMITH_API_URL=https://flagsmith.example.com \
TRANSPORT=stdio \
FLAGSMITH_API_TOKEN=<your-api-key> \
    uvx --from "git+https://github.com/Flagsmith/flagsmith.git@main#subdirectory=mcp" flagsmith-mcp

We recommend pinning to the release tag matching your Flagsmith version — for example @v2.241.0 instead of @main — so you don't pull unreleased changes.

Most clients accept these as a command and environment block. For example, in a mcp.json-style configuration:

{
 "mcpServers": {
  "flagsmith": {
   "command": "uvx",
   "args": ["--from", "git+https://github.com/Flagsmith/flagsmith.git@main#subdirectory=mcp", "flagsmith-mcp"],
   "env": {
    "FLAGSMITH_API_URL": "https://flagsmith.example.com",
    "TRANSPORT": "stdio",
    "FLAGSMITH_API_TOKEN": "<your-api-key>"
   }
  }
 }
}

See the MCP Server integration guide for the exact configuration each client expects — add FLAGSMITH_API_URL to the stdio examples there to target your deployment.

Configuration

The server is configured entirely through environment variables.

VariableDefaultDescription
FLAGSMITH_API_URLhttps://api.flagsmith.comBase URL of the Flagsmith API the server proxies. Set this to your self-hosted API.
MCP_SERVER_URLhttp://127.0.0.1:8000Public base URL of this server, advertised in OAuth metadata. Set this to the externally reachable URL when running behind a proxy.
TRANSPORThttpMCP transport. Use http for a hosted server. stdio runs the server as a local subprocess and requires FLAGSMITH_API_TOKEN.
FASTMCP_HOST0.0.0.0Host the HTTP transport binds to.
FASTMCP_PORT8000Port the HTTP transport binds to.
FLAGSMITH_API_TOKEN(unset)A static API key the server uses for every request. See Authentication.
METRICS_PORT(unset)Serve Prometheus metrics on this port. Disabled when unset.
LOG_LEVELINFOLog level for application loggers.
LOG_FORMATgenericLog output format. Set to json for structured logs.
OTEL_EXPORTER_OTLP_ENDPOINT(unset)OpenTelemetry endpoint to export logs and traces to. Export is disabled when unset.
OTEL_SERVICE_NAMEflagsmith-mcpService name reported to OpenTelemetry.

Authentication

The server forwards each client's credential to the Flagsmith API, so clients authenticate as themselves and inherit their own permissions. There are three ways to authenticate, controlled by how you run the server.

OAuth (interactive clients)

When you run the server over HTTP without setting FLAGSMITH_API_TOKEN, it advertises OAuth metadata pointing at your Flagsmith API as the authorisation server. Interactive clients discover this automatically and complete a browser login on first connection — no API keys to distribute. Set MCP_SERVER_URL to the externally reachable URL of the server so the advertised metadata is correct behind a proxy.

OAuth requires a Flagsmith deployment that exposes the MCP authorisation-server endpoints. If yours does not, use an API key instead.

API key (non-interactive clients)

Clients can authenticate per request by sending an Organisation API key in the Authorization header:

Authorization: Api-Key <your-api-key>

The server forwards this header to the Flagsmith API unchanged. This suits CI jobs and headless agents.

Static API key (single shared credential)

Setting FLAGSMITH_API_TOKEN makes the server use that key for every request, regardless of which client connects. This disables OAuth and is the only option for the stdio transport, which has no inbound request to forward a credential from. Avoid it for shared HTTP deployments: every client acts as the same identity, so you can't scope permissions per user and every action is attributed to the same key in your audit log.

Connecting clients

Point your MCP client at your server's base URL instead of https://mcp.flagsmith.com. The MCP Server integration guide has per-client configuration for Claude Code, Cursor, VS Code, and others.

Health check

The server exposes a GET /health endpoint that returns 200 OK. The container also ships with a Docker HEALTHCHECK that polls it, so orchestrators can detect readiness without extra configuration.

Observability

The server emits structured logs, Prometheus metrics (when METRICS_PORT is set), and OpenTelemetry traces and logs (when OTEL_EXPORTER_OTLP_ENDPOINT is set), spanning both the MCP server and the upstream Flagsmith API calls it makes.