Skip to content
MCP Gateway

Read backend-owned policy, credential, connector, and access posture for one MCP server.

GET
/v1/mcp-servers/{server_id}/policy-credentials

Read-only V1 endpoint for the MCP server detail Policy & Credentials tab. The backend derives posture from the live registry snapshot, server health, and recent metadata-only audit events; clients should not infer posture from raw audit rows.

Authorizations

Section titled “Authorizations ”

Parameters

Section titled “ Parameters ”

Path Parameters

Section titled “Path Parameters ”
server_id
required
string

Query Parameters

Section titled “Query Parameters ”
tenant_id
string
>= 1 characters

Defaults to the configured bootstrap tenant when omitted.

environment_id
string
>= 1 characters

Defaults to the configured bootstrap environment when omitted.

Responses

Section titled “ Responses ”

200

Section titled “200 ”

Metadata-only policy and credential read model with derived access posture.

object
schema_version
required
server_id
required
string
>= 1 characters
environment_id
required
string
>= 1 characters
live_snapshot_id
required
string
nullable
credential_mode
required
Allowed values: none service_account user_delegated agent_scoped workload_mapped
credential_binding
required
object
credential_binding_id
required
string
nullable
connector_id
required
string
nullable
status
required
Allowed values: not_required resolved missing denied expired revoked unknown
last_checked_at
required
string format: date-time
nullable
failure_reason
required
string
nullable /^[a-z0-9_]+$/
connector
required
object
connector_id
required
string
nullable
connector_status
required
Allowed values: healthy degraded unhealthy unknown not_configured
route_available
required
boolean
route_reason
required
string
nullable /^[a-z0-9_]+$/
policy_refs
required
Array<object>
object
policy_ref
required
string
>= 1 characters
tools_using_ref
required
Array<string>
highest_tool_risk
required
Allowed values: low medium high critical
allowed_tool_count
required
integer
denied_candidate_count
required
integer
tool_access
required
Array<object>
object
tool_id
required
string
>= 1 characters
name
required
string
>= 1 characters
risk_tier
required
Allowed values: low medium high critical
gateway_status
required
Allowed values: allowed denied_candidate
policy_refs
required
Array<string>
credential_resolution_status
required
string
nullable
Allowed values: not_required resolved missing denied expired revoked unknown
last_denial_reason
required
string
nullable /^[a-z0-9_]+$/
access_posture
required
object
status
required
Allowed values: callable partially_blocked blocked unknown
reasons
required
Array<string>
recent_failures
required
Array<object>
object
event_id
required
string
>= 1 characters
timestamp
required
string format: date-time
request_id
required
string
>= 1 characters
tool_id
required
string
nullable
failure_type
required
Allowed values: policy credential route
reason_code
required
string
/^[a-z0-9_]+$/
policy_rule_id
required
string
nullable
credential_binding_id
required
string
nullable
connector_id
required
string
nullable
permissions
required
object
resource_type
required
Allowed values: mcp_server agent credential_binding client_session
resource_id
required
string
>= 1 characters
allowed_actions
required
Array
Allowed values: mcp_server.read mcp_server.register mcp_server.submit_revision mcp_server.resubmit mcp_server.edit_owner mcp_server.validate_manifest mcp_server.reprobe mcp_server.approve_submission mcp_server.reject_submission mcp_server.disable mcp_server.deprecate mcp_server.archive mcp_server.compare_versions agent.read agent.submit agent.edit agent.approve agent.reject agent.disable agent.archive agent.revoke api_source.read api_source.import api_source.review api_source.approve api_source.reject api_source.disable api_source.archive credential_binding.read credential_binding.create credential_binding.update credential_binding.rotate credential_binding.disable credential_binding.revoke credential_binding.approve credential_binding.audit_read identity_provider.read identity_provider.diagnose role_binding.read role_binding.manage local_identity.read local_identity.manage reason_code.read reason_code.manage approval_queue.read approval_queue.batch_approve

403

Section titled “403 ”

Actor lacks mcp_server.read for this server scope.

404

Section titled “404 ”

MCP server registry record was not found.

Type set in Geist, Source Serif 4, and Departure Mono.