RedirectBoss Logo
RedirectBoss
PricingBlogDashboardContactGet Started
Get Started

MCP Server (AI Integration)

Overview

The RedirectBoss MCP server lets AI assistants such as Claude manage your redirects on your behalf. It implements the Model Context Protocol (MCP), an open standard for connecting AI models to external tools. When you authorize the server, the AI assistant can list and modify hosts and redirects in your account, and pull analytics on traffic and per-redirect performance, by calling our public API under the hood.

Server URL: https://mcp.redirectboss.com/mcp

Authentication: OAuth 2.0 (authorization code + PKCE)

Transport: Streamable HTTP

Requirements

  • A RedirectBoss account on a plan that includes API access. See pricing for plan details.
  • An MCP-compatible client such as Claude.ai, Claude Desktop, or Claude Code.

Available Tools

The server exposes the tools listed below. Read-only tools are safe to run without confirmation; write tools modify your account; destructive tools are irreversible and most MCP clients will prompt for confirmation before running them.

Host management

  • list_hosts: list all hosts with SSL/DNS status (read-only)
  • get_host: get detailed info for a single host (read-only)
  • create_host: add a new source domain (write)
  • update_host: update host settings, e.g. www handling (write)
  • delete_host: remove a host and deactivate its redirects (destructive)
  • check_dns: run a live DNS resolution check (read-only)
  • check_ssl: check SSL provisioning status (read-only)
  • enable_ssl: trigger SSL certificate provisioning via Let's Encrypt (write)

Redirect management

  • list_redirects: list redirect rules with filtering (read-only)
  • get_redirect: get a single redirect rule (read-only)
  • create_redirect: create a new redirect rule (write)
  • update_redirect: update fields on an existing redirect (write)
  • delete_redirect: permanently delete a redirect rule (destructive)

Analytics

  • get_hosts_analytics: per-host rollup of redirect counts, hits, and average response time (read-only)
  • get_traffic_trends: account-wide hits over time with daily or monthly granularity (read-only)
  • get_host_traffic_trends: hits over time scoped to a single host (read-only)
  • get_redirect_analytics: total hits, average response time, and daily breakdown for one redirect (read-only)
  • get_redirect_traffic_trends: hits over time for one redirect with configurable granularity (read-only)

Permission Scopes

When you authorize an MCP client, you'll see a consent screen listing the scopes the client is requesting. Each tool requires one of the following scopes:

  • read:hosts: required for list_hosts, get_host, check_dns, check_ssl
  • write:hosts: required for create_host, update_host, delete_host, enable_ssl
  • read:redirects: required for list_redirects, get_redirect
  • write:redirects: required for create_redirect, update_redirect, delete_redirect
  • read:analytics: required for get_hosts_analytics, get_traffic_trends, get_host_traffic_trends, get_redirect_analytics, get_redirect_traffic_trends

Organization role determines which scopes you can grant: account admins may grant all five scopes; members may only grant read scopes.

Quickstart

Claude.ai and Claude Desktop

Add RedirectBoss as a custom connector from your Claude settings:

  1. Open Claude settings and navigate to the Connectors section.
  2. Add a new custom connector.
  3. Set the server URL to https://mcp.redirectboss.com/mcp.
  4. When prompted, sign in to your RedirectBoss account and approve the requested scopes on the consent screen.

Once connected, the tools listed above become available to Claude. You can issue natural-language requests like "list all my hosts", "create a 301 redirect from /old to https://new.com/new on example.com", or "show me my traffic trends for this month" and Claude will call the appropriate tools.

Claude Code

Add the server to a project's MCP configuration:

{
    "mcpServers": {
        "redirectboss": {
            "url": "https://mcp.redirectboss.com/mcp"
        }
    }
}

Save this as .mcp.json in your project, or add the server via claude mcp add. On first use, Claude Code will open your browser to complete the OAuth authorization flow.

Other MCP clients

The patterns above (a server URL for hosted clients, or a JSON config entry pointing at https://mcp.redirectboss.com/mcp for CLI-style clients) work with most other MCP-compatible tools including Cursor, Zed, and others that support the Streamable HTTP transport with OAuth 2.0. Refer to your client's MCP documentation for the exact setup steps. Client-specific quickstart guides are coming soon.

How Authorization Works

Authorization follows the OAuth 2.0 authorization code flow with PKCE:

  1. The MCP client discovers the server's authorization endpoint via OAuth protected resource metadata.
  2. The client registers itself with our identity provider and redirects you there to sign in.
  3. You sign in to RedirectBoss and see a consent screen showing the client name and the scopes it's requesting. You can approve or deny.
  4. On approval, the client exchanges the authorization code for an access token scoped to your account.
  5. The access token is included on every subsequent MCP request and validated server-side.

Access tokens are short-lived and scoped to your account only. No passwords or long-term secrets are ever sent to the MCP client.

Rate Limits

MCP calls share the same rate limits as direct API access:

  • 5,000 requests per hour (across reads and writes)
  • 1,000 write operations per day

Exceeding these limits returns an HTTP 429 response, which the MCP client will surface as an error and retry after the Retry-After interval.

Reviewing and Revoking Access

You can see every MCP client authorized on your account and revoke access at any time from your dashboard under Preferences → Connected Apps. Revocation takes effect immediately, and subsequent requests from the revoked client are rejected. See the Privacy Policy section on third-party access for the full policy.

Troubleshooting

"API access not allowed"

Your current plan does not include API access. See our pricing page for plans that support it, then contact support@redirectboss.com to change your plan.

Consent screen shows wrong scopes

The scopes shown on the consent screen are the ones the MCP client requested. You can approve a subset if your client supports it, or decline the request and raise the issue with the client vendor.

Tool call returns 403 "insufficient scope"

The authorized client does not have the scope required for that tool. Re-authorize with a user account that has the necessary organization role (admin for write scopes) or reduce the scope of the request.

Support

Questions or issues integrating the MCP server? Email support@redirectboss.com. For the underlying REST API, see the API reference.

← Back to Home