> ## Documentation Index
> Fetch the complete documentation index at: https://openworklabs.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# Configure plugin MCP requirement

> Admin-only privileged setup for one declared remote MCP server. The server name and URL are derived from the active plugin config object; the request never supplies a URL and does not start OAuth.



## OpenAPI

````yaml /openapi.json post /v1/plugins/{pluginId}/mcp-connections
openapi: 3.1.0
info:
  title: Den API
  description: >-
    OpenAPI spec for the Den control plane API.


    Authentication:

    - Use `Authorization: Bearer <session-token>` for user-authenticated routes
    that require a Den session.

    - Use `x-api-key: <den-api-key>` for API-key-authenticated routes that
    accept organization API keys.

    - Public routes like health and documentation do not require authentication.


    Swagger tip: use the security schemes in the Authorize dialog to set either
    `bearerAuth` or `denApiKey` before trying protected endpoints.
  version: dev
servers: []
security: []
tags:
  - name: System
    description: Service health and operational routes.
  - name: Organizations
    description: Top-level organization creation and context routes.
  - name: Invitations
    description: Invitation preview, acceptance, creation, and cancellation routes.
  - name: API Keys
    description: Organization API key management routes.
  - name: SCIM
    description: Organization SCIM connector management routes.
  - name: SSO
    description: Organization single sign-on connector management routes.
  - name: Members
    description: Organization member management routes.
  - name: Roles
    description: Organization custom role management routes.
  - name: Teams
    description: Organization team management routes.
  - name: Templates
    description: Organization shared template routes.
  - name: LLM Providers
    description: Organization LLM provider catalog, configuration, and access routes.
  - name: Skills
    description: Organization skill authoring and sharing routes.
  - name: Skill Hubs
    description: Organization skill hub management and access routes.
  - name: Workers
    description: Worker lifecycle, billing, and runtime routes.
  - name: Worker Runtime
    description: Worker runtime inspection and upgrade routes.
  - name: Worker Activity
    description: Worker heartbeat and activity reporting routes.
  - name: Telemetry
    description: Telemetry event ingestion and adoption analytics.
  - name: Admin
    description: Administrative reporting routes.
  - name: Users
    description: Current user and membership routes.
  - name: Bootstrap
    description: Agent-first provisional workspace setup routes.
paths:
  /v1/plugins/{pluginId}/mcp-connections:
    post:
      tags:
        - Plugins
      summary: Configure plugin MCP requirement
      description: >-
        Admin-only privileged setup for one declared remote MCP server. The
        server name and URL are derived from the active plugin config object;
        the request never supplies a URL and does not start OAuth.
      operationId: postV1PluginsByPluginIdMcpConnections
      parameters:
        - in: path
          name: pluginId
          schema:
            format: typeid
            type: string
            minLength: 30
            maxLength: 30
            pattern: ^plg_.*
          required: true
          description: Den TypeID with 'plg_' prefix and a 26-character base32 suffix.
      requestBody:
        required: true
        content:
          application/json:
            schema:
              type: object
              properties:
                configObjectId:
                  description: >-
                    Den TypeID with 'cob_' prefix and a 26-character base32
                    suffix.
                  format: typeid
                  type: string
                  minLength: 30
                  maxLength: 30
                  pattern: ^cob_.*
                serverName:
                  type: string
                  minLength: 1
                  maxLength: 255
                authType:
                  default: oauth
                  type: string
                  enum:
                    - oauth
                    - apikey
                    - none
                credentialMode:
                  type: string
                  enum:
                    - shared
                    - per_member
                apiKey:
                  type: string
                  minLength: 1
                  maxLength: 4096
                oauthClient:
                  type: object
                  properties:
                    clientId:
                      type: string
                      minLength: 1
                      maxLength: 512
                    clientSecret:
                      type: string
                      minLength: 1
                      maxLength: 4096
                  required:
                    - clientId
              required:
                - configObjectId
                - serverName
      responses:
        '200':
          description: Plugin MCP requirement configured successfully.
          content:
            application/json:
              schema:
                $ref: >-
                  #/components/schemas/PluginArchPluginMcpRequirementConfigureResponse
        '400':
          description: The plugin MCP requirement request was invalid.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/InvalidRequestError'
        '401':
          description: The caller must be signed in to configure plugin MCP requirements.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/UnauthorizedError'
        '403':
          description: >-
            Only workspace owners and admins can configure plugin MCP
            requirements.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/ForbiddenError'
        '404':
          description: The plugin MCP requirement could not be found.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/NotFoundError'
components:
  schemas:
    PluginArchPluginMcpRequirementConfigureResponse:
      type: object
      properties:
        ok:
          type: boolean
          const: true
        item:
          type: object
          properties:
            binding:
              type: object
              properties:
                id:
                  description: >-
                    Den TypeID with 'pmr_' prefix and a 26-character base32
                    suffix.
                  format: typeid
                  type: string
                  minLength: 30
                  maxLength: 30
                  pattern: ^pmr_.*
                configObjectId:
                  description: >-
                    Den TypeID with 'cob_' prefix and a 26-character base32
                    suffix.
                  format: typeid
                  type: string
                  minLength: 30
                  maxLength: 30
                  pattern: ^cob_.*
                externalMcpConnectionId:
                  type: string
                pluginId:
                  description: >-
                    Den TypeID with 'plg_' prefix and a 26-character base32
                    suffix.
                  format: typeid
                  type: string
                  minLength: 30
                  maxLength: 30
                  pattern: ^plg_.*
                serverName:
                  type: string
              required:
                - id
                - configObjectId
                - externalMcpConnectionId
                - pluginId
                - serverName
            connection:
              type: object
              properties:
                id:
                  type: string
                name:
                  type: string
                url:
                  type: string
                authType:
                  type: string
                  enum:
                    - oauth
                    - apikey
                    - none
                credentialMode:
                  type: string
                  enum:
                    - shared
                    - per_member
                connected:
                  type: boolean
                connectedAt:
                  anyOf:
                    - type: string
                      format: date-time
                      pattern: >-
                        ^(?:(?:\d\d[2468][048]|\d\d[13579][26]|\d\d0[48]|[02468][048]00|[13579][26]00)-02-29|\d{4}-(?:(?:0[13578]|1[02])-(?:0[1-9]|[12]\d|3[01])|(?:0[469]|11)-(?:0[1-9]|[12]\d|30)|(?:02)-(?:0[1-9]|1\d|2[0-8])))T(?:(?:[01]\d|2[0-3]):[0-5]\d(?::[0-5]\d(?:\.\d+)?)?(?:Z|([+-](?:[01]\d|2[0-3]):[0-5]\d)))$
                    - type: 'null'
              required:
                - id
                - name
                - url
                - authType
                - credentialMode
                - connected
                - connectedAt
            links:
              type: object
              properties:
                yourConnections:
                  type: string
              required:
                - yourConnections
          required:
            - binding
            - connection
            - links
      required:
        - ok
        - item
    InvalidRequestError:
      type: object
      properties:
        error:
          type: string
          const: invalid_request
        details:
          type: array
          items:
            type: object
            properties:
              message:
                type: string
              path:
                type: array
                items:
                  anyOf:
                    - type: string
                    - type: number
            required:
              - message
            additionalProperties: {}
      required:
        - error
        - details
    UnauthorizedError:
      type: object
      properties:
        error:
          type: string
          const: unauthorized
      required:
        - error
    ForbiddenError:
      type: object
      properties:
        error:
          type: string
          enum:
            - forbidden
            - reauth
        reason:
          type: string
        message:
          type: string
      required:
        - error
    NotFoundError:
      type: object
      properties:
        error:
          type: string
        message:
          type: string
      required:
        - error

````