|
43 | 43 | The MCP Auth Flow uses your system’s default browser. Ensure that Insomnia can open URLs using your system browser. The MCP Auth Flow only supports browser-based OAuth. |
44 | 44 | - q: Why is MCP Auth Flow not listed under OAuth 2.0? |
45 | 45 | a: | |
46 | | - The MCP Server’s metadata may not include a valid authorization endpoint. Use a **Personal Access Token (PAT)** or **Basic Auth** instead. |
| 46 | + The MCP Server’s metadata may not include a valid authorization endpoint. Use a **Personal Access Token (PAT)** or **Basic Auth** instead. |
| 47 | + - q: Can I re-test MCP authentication? |
| 48 | + a: | |
| 49 | + Yes. To re-start the **MCP Authentication Flow**, remove the existing token and reconnect: |
| 50 | +
|
| 51 | + 1. Open the **Authentication** tab. |
| 52 | + 1. Disconnect from the server. |
| 53 | + 1. Delete the current access token value. |
| 54 | + 1. Reconnect or send a request to trigger the flow again. |
| 55 | +
|
| 56 | + Insomnia only restarts the MCP Authentication Flow when the server responds with `401 Unauthorized`. |
| 57 | +
|
| 58 | + > **Note:** You can't re-run individual MCP Auth calls. Only the full flow can be restarted manually. |
| 59 | + |
47 | 60 | --- |
48 | 61 | Use Insomnia to connect external **Model Context Protocol (MCP)** Servers to access AI-ready tools, prompts, and resource. An **MCP Client** defines this connection and stores authentication and configuration details. |
49 | 62 |
|
@@ -121,6 +134,9 @@ When you connect to an MCP Server that requires authentication, Insomnia follows |
121 | 134 | 3. If it’s not selected, Insomnia prompts you to switch to the discovered auth flow. |
122 | 135 | Confirm to proceed or cancel to remain on your current method. |
123 | 136 |
|
| 137 | +{:.info} |
| 138 | +> Not all MCP-compatible servers handle authentication the same way. Because this standard evolves quickly, some setups may need manual tweaks to work as expected. Insomnia shows you every request and response so you can check what succeeded or failed. |
| 139 | +
|
124 | 140 | If the authorization server does not support Dynamic Client Registration, you can: |
125 | 141 | - Use a **Personal Access Token (PAT)**, for example GitHub Copilot MCP Server. |
126 | 142 | - Register your own **OAuth application**, then enter the Client ID and Secret in Insomnia. |
|
0 commit comments