@blueconic/blueconic-mcp
v0.0.13
Published
BlueConic Client-Side MCP Server - Dynamic multi-tenant OpenAPI adapter for providing context to AI models
Maintainers
bc-bamboo
bc-bartvb
bc-edgars
blueconic-adm
ate
ynooijen
markmachielsen
bc-richard
bc-paulrutter
bartleusink
erikvl
karelb
stephanh
bc-gabriel.ciochina
bc-arthur
bc-marten
bc-dennis
dionm
bc-vreuls
bc-nicky
bc-tara
bc-atieh
bc-sandra
egilreath
bc-koenro
bc-saranya
bc-omar
bc-landon
jaspergeurts
bc-justin
bc-mike
bc-shilpa
bc-lukasz
bc-alexi
bc-lucia
bc-supriya
bc-sebastian
bc-travis
bc-santiago
bc-ryan
bc-remus
dominickpalma
bc-bogdan
bc-aneta
bc-daniels
evang10
bc-andib
bc-joseph
bc-owencReadme
BlueConic MCP
A client-side MCP server that dynamically exposes all BlueConic REST API endpoints for use with AI coding assistants like Cursor and VS Code GitHub Copilot.
More information can be found on the support documentation: https://support.blueconic.com/en/articles/415706-blueconic-mcp-client-for-ai-coding-assistants.
IMPORTANT NOTE
Opening up your BlueConic tenant with MCP can be dangerous, as you need to trust the model to use it in a sensible and safe manner. If used incorrectly, it could lead to sensitive data being leaked. Make sure that the MCP host you're using, doesn't use the MCP context for training their models!
Multi-Tenant SaaS ✨
- 🏢 No server deployment - Each user runs locally
- 🔄 Dynamic API discovery - Auto-loads from tenant's OpenAPI spec
- 🔐 Per-user credentials - Each user uses their own OAuth tokens
- 🚀 Instant setup - Works with any BlueConic tenant
- 📡 All APIs exposed - Every endpoint in your OpenAPI spec becomes available
Quick Start
1. Install Dependencies
Make sure Node.js (>= 22.x) is installed, along with NPM (node package manager).
npm install2. Configure Your Tenant
# Your BlueConic tenant
export BLUECONIC_TENANT_URL="https://yourtenant.blueconic.net"
# Your OAuth app credentials
export OAUTH_CLIENT_ID="your_client_id"
export OAUTH_CLIENT_SECRET="your_client_secret"
# For development with self-signed certs
export NODE_TLS_REJECT_UNAUTHORIZED="0"3. Run the MCP Server
npm startYou should see:
Loading OpenAPI spec from: https://yourtenant.blueconic.net/rest/v2/openapi.json?prettyPrint=true
Loaded 24 API endpoints as MCP tools
BlueConic Dynamic MCP Server started successfully (version: xxx)Integration with AI Tools
Cursor
Add to your Cursor settings (.cursor/mcp.json):
When using the NPM package:
{
"mcpServers": {
"blueconic": {
"command": "npx",
"args": ["@blueconic/blueconic-mcp"],
"env": {
"BLUECONIC_TENANT_URL": "https://yourtenant.blueconic.net",
"OAUTH_CLIENT_ID": "your_client_id",
"OAUTH_CLIENT_SECRET": "your_client_secret"
}
}
}
}For local development:
{
"mcpServers": {
"blueconic": {
"command": "npx",
"args": [
"tsx",
"/path/to/blueconic-mcp-client/client-side-server.ts"
],
"env": {
"BLUECONIC_TENANT_URL": "https://yourtenant.blueconic.net",
"OAUTH_CLIENT_ID": "your_client_id",
"OAUTH_CLIENT_SECRET": "your_client_secret"
}
}
}
}VS Code GitHub Copilot
Add to your VS Code settings. When using the NPM package:
{
"servers": {
"blueconic": {
"name": "BlueConic MCP Server",
"description": "BlueConic MCP Server",
"command": "npx",
"args": ["@blueconic/blueconic-mcp"],
"env": {
"BLUECONIC_TENANT_URL": "${input:blueconic-tenant-url}",
"OAUTH_CLIENT_ID": "${input:blueconic-oauth2-client-id}",
"OAUTH_CLIENT_SECRET": "${input:blueconic-oauth2-client-secret}"
}
}
},
"inputs": [{
"type": "promptString",
"id": "blueconic-tenant-url",
"description": "BlueConic tenant URL, e.g. https://mytenant.blueconic.net",
"password": false
}, {
"type": "promptString",
"id": "blueconic-oauth2-client-id",
"description": "BlueConic OAuth2.0 Client ID",
"password": true
},{
"type": "promptString",
"id": "blueconic-oauth2-client-secret",
"description": "BlueConic OAuth2.0 Client secret",
"password": true
}]
}For local development:
{
"servers": {
"blueconic": {
"name": "BlueConic MCP Server",
"description": "BlueConic MCP Server",
"command": "npx",
"args": [
"tsx",
"/path/to/blueconic-mcp-client/client-side-server.ts"
],
"env": {
"BLUECONIC_TENANT_URL": "${input:blueconic-tenant-url}",
"OAUTH_CLIENT_ID": "${input:blueconic-oauth2-client-id}",
"OAUTH_CLIENT_SECRET": "${input:blueconic-oauth2-client-secret}"
}
}
},
"inputs": [{
"type": "promptString",
"id": "blueconic-tenant-url",
"description": "BlueConic tenant URL, e.g. https://mytenant.blueconic.net",
"password": false
}, {
"type": "promptString",
"id": "blueconic-oauth2-client-id",
"description": "BlueConic OAuth2.0 Client ID",
"password": true
},{
"type": "promptString",
"id": "blueconic-oauth2-client-secret",
"description": "BlueConic OAuth2.0 Client secret",
"password": true
}]
}Available Tools (Dynamic)
The server automatically discovers and exposes ALL API endpoints from your tenant's OpenAPI specification, such as:
/segments- Retrieve all segments/profiles- Search profiles/profiles/{profileId}- Get one profile by ID/segments/{segment}/profiles- Get profiles from a segemnt- And many more...
Example Usage
Once configured, you can ask your AI assistant:
- "Get all segments from my BlueConic tenant"
- "Show me profiles in the 'high-value-customers' segment"
- "Can you retrieve 1000 profiles from the allvisitors segment and tell me what stands out"
The AI will automatically use the appropriate API endpoint with your credentials.
Security Features
✅ Client-side only - No server infrastructure needed ✅ Per-user credentials - Each user's own OAuth tokens (Per BlueConic Application) ✅ Dynamic scopes - Uses whatever permissions the user's OAuth app has ✅ Token caching - Automatic refresh when tokens expire ✅ Input validation - Sanitizes all API parameters ✅ HTTPS only - Secure communication with your tenant
Option A: Direct Installation
Users clone this repository and configure locally.
Option B: NPM Package
Publish as a global package:
npm install -g @blueconic/blueconic-mcp
blueconic-mcp --tenant https://yourtenant.blueconic.netFor BlueConic Customers
Getting Your OAuth Credentials
- Log into your BlueConic tenant
- Navigate to Settings > Access management > Applications
- Create a new application with "client credentials" and enable it
- Grant the scopes you need (e.g.,
read:segments,read:profiles) - Copy the Client ID and Client Secret
- Use these in your MCP configuration
Required OAuth Scopes
The adapter works with any scopes your read OAuth application has. Write scopes are not supported yet.
read:segments- For segment operationsread:profiles- For profile dataread:connections- For connection managementread:interactions- For interaction data
Architecture
┌─────────────────┐ ┌─────────────────┐ ┌─────────────────┐
│ Cursor/VS │◄───┤ MCP Client │◄───┤ BlueConic │
│ Code Copilot │ │ (Local) │ │ Tenant API │
└─────────────────┘ └─────────────────┘ └─────────────────┘
│
▼
┌─────────────────┐
│ OpenAPI Spec │
│ Auto-Discovery │
└─────────────────┘Troubleshooting
OpenAPI Spec Not Loading
- Verify your
BLUECONIC_TENANT_URLis correct - Check that
/rest/v2/openapi.jsonis accessible - Ensure network connectivity to your tenant
OAuth Authentication Failed
- Verify client credentials are correct
- Check OAuth app has required scopes enabled
- Ensure token endpoint is accessible
No Tools Appearing in AI Assistant
- Check server startup logs for errors
- Verify OpenAPI spec loaded successfully
- Restart Cursor/VS Code after configuration changes