> ## Documentation Index
> Fetch the complete documentation index at: https://docs.turso.tech/llms.txt
> Use this file to discover all available pages before exploring further.
# MCP (AI agents)
> Connect AI agents to Turso Cloud over the Model Context Protocol — manage databases and run SQL with OAuth, no API token to copy.
Turso runs a hosted [Model Context Protocol](https://modelcontextprotocol.io) (MCP)
server at **`https://mcp.turso.ai/mcp`**. Connect any MCP-capable AI agent and it
can manage your Turso Cloud account — organizations, databases, groups — and run
SQL, on your behalf.
Authentication is **OAuth 2.1** (the same model you use to log in to the
dashboard): you approve access in the browser and the agent receives a scoped
token. **There's no API token to copy or paste.**
## What the agent can do
Once connected, the agent has tools to:
* **Databases** — list, inspect, create, delete, and branch databases (including
point-in-time branches), and update configuration (delete-protection, IP/VPC
allow rules, size limits).
* **SQL** — run read-only queries, writes, deletes, and schema changes, each as a
separate tool so the agent uses the least-powerful one for the task.
* **Insight** — per-database analytics (top queries by frequency and latency).
Read-only and destructive operations are labeled, so the agent can tell them
apart and confirm before doing anything that changes data.
## Connect
Install the plugin, then authenticate:
```bash theme={null}
/plugin marketplace add tursodatabase/turso-mcp
/plugin install turso@turso
```
Run `/mcp`, select **turso**, and choose **Authenticate**. Your browser opens
to approve access (see [Authorize](#authorize-access) below).
Install the plugin (it bundles the Turso skill too), then authenticate:
```bash theme={null}
codex plugin marketplace add tursodatabase/turso-mcp
codex plugin add turso@turso
codex mcp login turso
```
A browser opens to approve access (see [Authorize](#authorize-access) below).
MCP-only alternative: add `[mcp_servers.turso]` with
`url = "https://mcp.turso.ai/mcp"` to `~/.codex/config.toml`, then
`codex mcp login turso`.
Add a custom connector pointing at the Turso MCP server:
1. Open **Settings → Connectors → Add custom connector**.
2. Set the URL to `https://mcp.turso.ai/mcp` and connect.
3. Approve access in the browser (see [Authorize](#authorize-access) below).
Point any MCP client that supports remote (Streamable HTTP) servers with OAuth
at:
```
https://mcp.turso.ai/mcp
```
The client discovers the authorization server automatically (RFC 9728 / RFC
8414\) and walks you through the same browser approval.
## Authorize access
When the browser opens, you'll log in to Turso (if you aren't already) and land
on a consent screen where you choose **what the agent can access**:
* the **organization**;
* optionally a single **group** to limit the token to — or the whole
organization for full access;
* for a group, the **permissions** (read-only, full-access, or a custom set).
Approve, and the agent is connected. To re-scope or switch organizations,
disconnect and authenticate again (in Claude Code: `/mcp` → **turso** → **Clear
authentication**).
Picking a **group** scopes the token to that group's resources — the
least-privilege choice. "Entire organization" grants full access. Either way the
token is enforced at Turso's API: every tool call is checked for org-binding,
role, and scope, and recorded in your audit log.
## How it works
* The MCP server holds no privilege of its own. Each tool forwards your request
to the regular Turso platform API carrying your token, so the same
authorization and audit rules apply as any other API access.
* The token is **organization- or group-scoped**; unscoped tokens are rejected.
* Consent happens on the Turso dashboard — the only place that can see your login
session — which mints the scoped token the agent then uses.
## Resources
* Plugin source and per-agent configs: [github.com/tursodatabase/turso-mcp](https://github.com/tursodatabase/turso-mcp)