Model Context Protocol (MCP)

Connect Project Feed directly to Claude Code, Codex, and other MCP clients with the hosted remote MCP server.

What It Is

Project Feed exposes a hosted MCP server so AI clients can discover authenticated tools, open curated workspace resources, fetch workflow prompts, and complete Project Feed IDs and enums over HTTPS. The server remains remote-only; you do not need to install the local packages/mcp-serverworkspace package to use the public integration.

Server URL

https://projectfeed.app/api/mcp

Use this public URL in supported MCP clients. Requests are proxied to the Convex HTTP router, but the canonical external endpoint is /api/mcp.

Authentication

The hosted endpoint supports both Project Feed API keys and MCP OAuth bearer tokens. API keys are still the fastest path for scripts and advanced users. OAuth is intended for browser-mediated installs and advertises its metadata from the well-known endpoints below.

Authorization: Bearer pf_live_YOUR_API_KEY

WWW-Authenticate: Bearer resource_metadata="https://projectfeed.app/.well-known/oauth-protected-resource"

Create the key in workspace developer settings. For MCP, create a dedicated key preset for the client you are configuring. A read-only preset is safest for browse-only assistants. Broader keys expose the matching create and update tools in tools/list. OAuth scope grants map to the same Project Feed permission strings.

Client Setup

Claude Code

claude mcp add --transport http project-feed https://projectfeed.app/api/mcp

Codex

codex mcp add projectFeed --url https://projectfeed.app/api/mcp

[mcp_servers.projectFeed]
url = "https://projectfeed.app/api/mcp"

[mcp_servers.projectFeed.headers]
Authorization = "Bearer pf_live_YOUR_API_KEY"

OAuth Discovery

https://projectfeed.app/.well-known/oauth-protected-resource

https://projectfeed.app/.well-known/oauth-authorization-server

Transport Flow

POST /api/mcp
MCP-Protocol-Version: 2025-11-25
Authorization: Bearer pf_live_YOUR_API_KEY

{ "jsonrpc": "2.0", "id": 1, "method": "initialize" }

Mcp-Session-Id: <value from initialize>

After initialize, include Mcp-Session-Id on follow-up POST /api/mcp, GET /api/mcp, and DELETE /api/mcp requests. SSE resume uses Last-Event-ID.

Supported Methods

initialize, ping, and notifications/initialized
tools/list and tools/call for the authenticated Project Feed API surface, with structuredContent and resource links in tool results
resources/list, resources/templates/list, and resources/read
prompts/list, prompts/get, and completion/complete

Current Limits

Sampling and elicitation are still deferred. Project Feed does not yet expose sampling/createMessage or elicitation/create.
The current curated resources are workspace overview, unread notifications, and per-item project, task, and post resources. The server does not mirror every REST endpoint as a resource.
OAuth workspace context follows the authenticated user’s current default workspace selection in Project Feed.
The server advertises MCP protocol 2025-11-25 and still accepts compatibility headers for 2025-06-18 and legacy 2025-03-26.

Need API key details or scope guidance first? Start with the Authentication guide.

What It Is

Transport Flow

POST /api/mcp
MCP-Protocol-Version: 2025-11-25
Authorization: Bearer pf_live_YOUR_API_KEY

{ "jsonrpc": "2.0", "id": 1, "method": "initialize" }

Mcp-Session-Id: <value from initialize>

After initialize, include Mcp-Session-Id on follow-up POST /api/mcp, GET /api/mcp, and DELETE /api/mcp requests. SSE resume uses Last-Event-ID.