Centralized Oauth

for every MCP server.

Every MCP server reinvents authentication. Obot puts one OAuth control plane in front of all of them — broker tokens server-side, anchor access to your existing IdP, and stop credential sprawl before it spreads. Open source. Self-hostable. Production-ready.

Open source on GitHub. Star the repo →

Slack
GitHub
Notion
Microsoft
Postgres
Atlassian

obot-secops ~ threat-monitor.live LIVE · 3 ACTIVE

ALERT-001 CRITICAL

OAuth sprawl

Every MCP server reinvents authentication. Tokens leak, scopes are too broad, and rotation is manual.
ALERT-002 CRITICAL

Tokens in the wrong hands

AI clients and local configs end up holding raw OAuth tokens and refresh secrets. One leaked machine or synced config exposes every connected system at once.
ALERT-003 CRITICAL

Your IdP can't keep up

MCP requires Dynamic Client Registration, but Okta and Microsoft Entra don't support it natively. Teams hand-wire clients, share static secrets, or skip auth entirely.

Obot’s MCP OAuth layer fixes all three.

Obot is an open-source MCP gateway that brokers OAuth for every MCP server — local, remote, or hosted. It authenticates users against your existing identity provider (Okta, Microsoft Entra, Google), runs the OAuth handshake server-side so tokens never reach the AI client, and bridges the Dynamic Client Registration gap that Entra and Okta don't natively support. One authentication layer for every AI integration your teams need.

Landing Page – Paid Campaigns – MCP OAuth

Centralized OAuth
Server-Side Token Brokering
IdP / SSO Integration
Dynamic Client Registration
Access Policies
Self-Host or Managed

Tokens never leave the gateway.
Every call is logged,
Policies enforced per tool.

Centralized OAuth

One identity layer for every MCP server. Plug into Google, GitHub, Okta, Auth0, JumpCloud, Entra. Token brokering, scope enforcement, and rotation handled.

Learn more

1

Deploy the gateway

Run Obot on Kubernetes or Docker. Connect your IdP. Done in under an hour.
2

Load the catalog

Start from Obot's library of vetted MCP servers (Slack, GitHub, Notion, Outlook, MongoDB, and more) or add your own.
3

Define access policies

Map users and teams to skills with fine-grained rules.
4

Users discover & connect

Engineers and analysts browse the catalog from Claude, Cursor, ChatGPT, or any MCP client. One-click connect.
5

Calls flow through the gateway

Obot enforces auth, applies policy, and logs every request. Agents don't see raw credentials. Ever.
6

You watch, audit, and scale

Real-time usage dashboards. Compliance-ready audit trail. Pause or revoke any user, agent, or server in one click.

Landing Page – Paid Campaigns – MCP OAuth

Schedule a Demo Read the technical whitepaper

Try Obot Now View on GitHub Read the Docs

84+

Verified MCP servers ready to connect
$35M

Seed round to build the enterprise MCP gateway
MIT Licensed

Fully open source, self-hostable

MCPs and skills are becoming the backbone of AI integration. Without a control layer, organizations expose themselves to security, compliance, and operational risk.

What types of MCP servers does Obot support?

Which MCP clients work with Obot?

Which identity providers does Obot integrate with?

How does Obot keep internal data secure?

Is Obot really free to use?

Can I run Obot on-prem or in my own cloud?

How do I get started?

Full access to every Obot Cloud feature for 14 days
One OAuth setup across every MCP server you connect, with IdP-based access control
Full audit trail and governance out of the box

View GitHub Read Whitepaper Browse the MCP Catalog