mcp-use - Connect Any LLM to Any MCP Server

Setup

1. Create Auth0 Application

Go to Auth0 Dashboard
Navigate to Applications → Create Application
Choose Single Page Application or Machine to Machine
Note your Domain and Client ID

2. Configure Application

In your Auth0 application settings: Allowed Callback URLs:

http://localhost:3000/callback // for testing
https://yourdomain.com/callback

Allowed Web Origins:

http://localhost:3000 // for testing
https://yourdomain.com

Advanced Settings → Grant Types:

✅ Authorization Code
✅ Refresh Token

3. Create an API

Navigate to APIs → Create API
Set Name: Your API name
Set Identifier: https://your-api.example.com (this becomes your audience)
Leave Signing Algorithm as RS256

Configuration

Basic Configuration

import { MCPServer, oauthAuth0Provider } from 'mcp-use/server'

const server = new MCPServer({
  name: 'my-server',
  version: '1.0.0',
  oauth: oauthAuth0Provider({
    domain: process.env.MCP_USE_OAUTH_AUTH0_DOMAIN!, // 'your-tenant.auth0.com'
    audience: process.env.MCP_USE_OAUTH_AUTH0_AUDIENCE!, // 'https://your-api.example.com'
  })
})

server.listen(3000)

Environment Variables

# .env
MCP_USE_OAUTH_AUTH0_DOMAIN=your-tenant.auth0.com
MCP_USE_OAUTH_AUTH0_AUDIENCE=https://your-api.example.com

Full Configuration Options

const server = new MCPServer({
  oauth: oauthAuth0Provider({
    // Required
    domain: 'your-tenant.auth0.com',
    audience: 'https://your-api.example.com',
    
    // Optional
    clientId: process.env.AUTH0_CLIENT_ID,
    clientSecret: process.env.AUTH0_CLIENT_SECRET,
    
    // OAuth mode: 'proxy' (default) or 'direct'
    mode: 'proxy',
    
    // JWT verification (should be true in production)
    verifyJwt: process.env.NODE_ENV === 'production',
    
    // Custom scopes
    scopes: ['openid', 'profile', 'email', 'offline_access'],
    
    // Custom user info extraction
    getUserInfo: (payload) => ({
      userId: payload.sub,
      email: payload.email,
      name: payload.name,
      roles: payload['https://myapp.com/roles'] || [],
      permissions: payload.permissions || [],
    })
  })
})

Permissions

Configure Permissions

In Auth0 Dashboard → APIs → Your API
Go to Permissions tab
Add permissions:
- read:documents
- write:documents
- delete:documents

Assign Permissions

Via Rules/Actions:

exports.onExecutePostLogin = async (event, api) => {
  const permissions = event.authorization?.permissions || [];
  api.accessToken.setCustomClaim('permissions', permissions);
};

Via Machine-to-Machine:

Go to Applications → Your App → APIs
Authorize the API
Select specific permissions

Check Permissions

server.tool({
  name: 'delete-document',
  schema: z.object({ documentId: z.string() }),
}, async ({ documentId }, context) => {
  if (!context.auth.permissions?.includes('delete:documents')) {
    return error('Forbidden: delete:documents permission required')
  }
  
  await db.documents.delete({ id: documentId })
  return text('Document deleted')
})

Testing

Using MCP Inspector

The Inspector includes full Auth0 OAuth support:

server.listen(3000)
console.log('🔍 Inspector: http://localhost:3000/inspector')

Open the Inspector and authenticate with Auth0.

Resources

Next Steps

User Context - Access user information

Get Started

MCP Agent

MCP Client

MCP Server

Development

Auth0 Provider

Setup

1. Create Auth0 Application

2. Configure Application

3. Create an API

Configuration

Basic Configuration

Environment Variables

Full Configuration Options

Permissions

Configure Permissions

Assign Permissions

Check Permissions

Testing

Using MCP Inspector

Resources

Next Steps

Get Started

MCP Agent

MCP Client

MCP Server

Development

​Setup

​1. Create Auth0 Application

​2. Configure Application

​3. Create an API

​Configuration

​Basic Configuration

​Environment Variables

​Full Configuration Options

​Permissions

​Configure Permissions

​Assign Permissions

​Check Permissions

​Testing

​Using MCP Inspector

​Resources

​Next Steps

Setup

1. Create Auth0 Application

2. Configure Application

3. Create an API

Configuration

Basic Configuration

Environment Variables

Full Configuration Options

Permissions

Configure Permissions

Assign Permissions

Check Permissions

Testing

Using MCP Inspector

Resources

Next Steps