Distribution ChannelsAI Access (MCP Gateway)

AI Access (MCP Gateway)

Connect your own AI assistants to your reference data — token management, scopes, usage monitoring, and client setup.

The MCP gateway gives your company's AI tools read access to your own reference data via the Model Context Protocol — the open standard supported by Claude, ChatGPT, Copilot Studio, Cursor, n8n, LangChain, and others. Your assistant can then search your references, retrieve project details, and answer questions like "which of our projects match this RFP?" from your real portfolio.

The MCP gateway is rolling out and may not be enabled for every account yet. Access to the management page requires the edit company settings permission. Contact the platform team if you don't see it.

What connected AI tools can do

The gateway is read-only. It exposes tools such as searching and listing references, fetching a single reference, listing industries and reference groups, and reading your company profile — always scoped to your company's data only.

Managing tokens

AI / MCP Gateway (/my/ai) manages access:

  • Create a token — give it a label and choose its scopes. The token value is displayed once; copy it immediately into your AI tool's configuration.
  • The token list shows label, scopes, status, creator, last use, expiry, and usage counts (30-day and total).
  • Rotate a token to replace its secret, or revoke it to cut access instantly.

Treat tokens like passwords: one token per tool or integration, revoke what's unused.

Connecting a client

The setup guides on the page provide copy-paste configuration for common clients. The gateway speaks standard MCP over HTTPS:

  • Endpoint: https://referenzen.com/mcp/v1
  • Authentication: Authorization: Bearer <your token>

Example (Claude Desktop / MCP-compatible clients):

{
  "mcpServers": {
    "references": {
      "url": "https://referenzen.com/mcp/v1",
      "headers": {
        "Authorization": "Bearer YOUR_TOKEN"
      }
    }
  }
}

Requests are rate-limited (60 requests per minute per token).

Monitoring usage

The Usage page charts calls, errors, and response times per token over the last 30 days; MCP calls also appear in your statistics. Review it occasionally — unexpected usage patterns are a reason to rotate a token.

Anyone holding a valid token can read the data its scopes allow — including internal fields if you grant that scope. Grant narrow scopes, share tokens only through secure channels, and revoke tokens when a tool or employee no longer needs access.