MCP Authentication
How It Works
The MCP server uses OAuth 2.0 with PKCE for authentication. When you connect from an AI client like Claude Desktop, Claude Code, or ChatGPT, the OAuth flow is handled automatically — you just log in with your Local Business Pro credentials and authorize the connection.
No passwords are shared with the AI assistant. Your connection can be revoked at any time from Settings > Connected Apps in Local Business Pro. Connections remain active until you revoke them or your session expires.
Scopes
Scopes control what your AI assistant can access:
Scope hierarchy:
| Scope | Description | Access |
|---|---|---|
mcp:use | Full access | All available tools |
mcp:read | Read-only access | View business info, contacts, conversations, appointments, invoices, and more |
mcp:write | Write access | Update contacts, configure receptionist, run automations, and more (also grants read access) |
mcp:use grants full access. mcp:write implicitly includes mcp:read.