Skip to content

Connect other MCP clients to Coinrule

Connect any OAuth 2.1 MCP client to Coinrule — the server URL, discovery endpoints, PKCE, scopes, and transport details for developers and power users.

Updated 2026-07-10·2 min read

The Coinrule MCP is a standards-compliant remote MCP server, so any client that supports the Model Context Protocol over Streamable HTTP with OAuth 2.1 can connect — not just Claude, ChatGPT, and Grok. This page covers the technical details for other clients and developers.

Endpoints

PurposeURL
MCP server (Streamable HTTP)https://cloud.coinrule.com/mcp
OAuth authorization serverhttps://cloud.coinrule.com
Protected-resource metadatahttps://cloud.coinrule.com/.well-known/oauth-protected-resource/mcp
Manage / revoke connectionshttps://cloud.coinrule.com/settings/integrations

Most clients only need the MCP server URL — they discover the OAuth endpoints automatically from the protected-resource metadata.

OAuth requirements

The authorization server supports:

  • Grants: authorization_code and refresh_token.
  • PKCE: required, S256 only.
  • Client registration: Dynamic Client Registration (DCR) via POST /oauth/register, and Client ID Metadata Documents (CIMD) for clients that use an HTTPS URL as their client_id.
  • Public clients: token_endpoint_auth_method is none.
  • Scopes: coinrule:read and coinrule:write (see scopes and permissions).

Access tokens are short-lived; refresh tokens rotate. Every request to /mcp must carry the bearer token your client obtains through the OAuth flow.

Connection flow

  1. Discover metadata

    Fetch the protected-resource metadata to learn the authorization server, then fetch the authorization-server metadata for the authorize, token, and registration endpoints.

  2. Register (DCR or CIMD)

    Register a client via POST /oauth/register, or present an HTTPS client_id metadata document if your client uses CIMD.

  3. Authorize with PKCE

    Send the user through /oauth/authorize with an S256 code challenge. They sign in with Coinrule and choose read-only or read+write.

  4. Exchange the code

    Exchange the authorization code at /oauth/token for an access token and refresh token.

  5. Call tools

    Open the MCP session at https://cloud.coinrule.com/mcp with Authorization: Bearer <token> and call tools.

Local development

Coinrule also ships a localhost-only development MCP for contributors. It is separate from this production server and is not used to connect external AI clients. This page covers the production MCP at cloud.coinrule.com/mcp.

Next steps

Was this article helpful?