AcrossAI MCP Manager

Descrizione

MCP Manager uses the standard @automattic/mcp-wordpress-remote@latest package with WordPress Application Passwords for the default remote flow. It also includes an optional experimental direct Claude Connectors mode backed by a WordPress-hosted OAuth approval flow.

MCP Manager is a WordPress plugin that enables seamless integration with Model Context Protocol (MCP) servers, allowing AI assistants and code editors to safely access your WordPress instance through secure application passwords.

Key Features

  • Multi-Client Support: Configure MCP for:

    • VS Code with Copilot
    • Claude Desktop App
    • GitHub Copilot & Codex
    • OpenAI ChatGPT Codex
    • Custom MCP Clients
  • Secure Authentication: Uses WordPress native Application Passwords system

    • One-click password generation
    • Secure credential management
    • Password revocation support
    • Per-server Access Control still enforced after authentication
  • Easy Configuration:

    • Copy-paste ready JSON configurations
    • Per-provider configuration file paths
    • Automatic top-level key detection
  • Format #1 Standard: Uses the Automattic-recommended MCP configuration format

    • npx command execution
    • @automattic/mcp-wordpress-remote@latest package
    • Full environment variable support

How It Works

  1. Navigate to Settings MCP Manager
  2. Select your MCP client (VS Code, Claude, GitHub Copilot, ChatGPT, or Custom)
  3. Click “Generate New Application Password”
  4. Copy the ready-to-use JSON configuration
  5. Paste into your client’s configuration file
  6. Restart your MCP client

All application passwords are managed through WordPress’s native Application Passwords system and appear in your profile under Account Management.

CLI Connection and Authorization Flow

MCP Manager also supports a browser-assisted CLI connection flow for local MCP clients.

Typical command:

npx -y @acrossai/mcp-manager --siteurl=https://example.com --server=default-mcp-server

Flow summary:

  1. The CLI checks /wp-json/acrossai-mcp-manager/v1/health
  2. The CLI starts auth with /wp-json/acrossai-mcp-manager/v1/auth/start
  3. WordPress returns an auth_code and frontend auth_url
  4. The CLI opens the frontend approval page at /acrossai-mcp-manager/
  5. If needed, the user signs in through normal WordPress login
  6. The signed-in user approves access in the browser
  7. The CLI polls /auth/status until the request is approved
  8. The CLI fetches the approved user’s accessible servers from /servers
  9. The CLI exchanges the approved code at /auth/exchange
  10. WordPress creates a one-time Application Password and the CLI writes the MCP client config

Terminology:

  • Sign in / Log in = WordPress account authentication
  • Connect = starting the CLI-to-site linking flow
  • Authorize / Approve access = granting the CLI permission in the browser

Important notes:

  • The frontend authorization page must never be cached
  • Auth codes are single-use
  • /servers and /auth/exchange respect per-server access control
  • User-facing copy should say CLI Connections rather than npm Login
  • Generated remote MCP configs use Application Passwords and explicitly disable OAuth discovery in @automattic/mcp-wordpress-remote

Experimental Direct Claude Connectors

An optional Claude Connectors Screen (Experimental) setting can enable a direct OAuth flow for Claude’s hosted connectors.

When the global feature toggle is enabled and a specific server is configured in its Claude Connector tab, the plugin exposes:

  • /.well-known/oauth-authorization-server
  • /.well-known/oauth-protected-resource?resource=<mcp-url>
  • /acrossai-mcp-connectors/oauth/authorize/
  • /wp-json/acrossai-mcp-manager/v1/connector/oauth/token

Important notes:

  • Disabled by default
  • The Application Password flow remains available and supported
  • The master experimental toggle is global, but OAuth client settings are stored per server
  • Direct connector approval signs Claude in as a WordPress user
  • Per-server Access Control still applies to every MCP request after OAuth
  • Public HTTPS is recommended for hosted connector usage

Provider Configuration Paths

  • VS Code: ~/.config/Code/User/globalStorage/Copilot.copilot-chat/mcp.json (top-level key: “servers”)
  • Claude: ~/Library/Application Support/Claude/claude_desktop_config.json (top-level key: “mcpServers”)
  • GitHub Copilot: ~/.gh-copilot/config.json (top-level key: “servers”)
  • OpenAI ChatGPT: ~/.config/chatgpt/config.json (top-level key: “servers”)
  • Custom: ./your-project/.mcp/config.json (top-level key: configurable)

Requirements

  • WordPress 5.9 or higher
  • PHP 7.4 or higher
  • WordPress Application Passwords support (built-in since WP 5.6)

Support & Contribution

For issues, feature requests, or contributions, visit the plugin repository.

Questions? Check the FAQ section or look for documentation in the plugin settings page.

Development

This plugin follows WordPress coding standards and best practices:
– PHP 7.4+ compatible
– Full object-oriented architecture
– Secure nonce verification
– Proper capability checks
– Sanitized input validation
– Escaped output

License

This plugin is licensed under the GPL-2.0-or-later license. See LICENSE file for details.

Credits

MCP Manager is built with:
– WordPress native APIs
– Automattic’s MCP WordPress Remote package
– WordPress Application Passwords system

Developed with ❤️ for the WordPress community.

Installazione

  1. Upload the plugin directory to /wp-content/plugins/
  2. Activate the plugin through the ‘Plugins’ menu in WordPress
  3. Navigate to Settings MCP Manager to configure

Or:

  1. Go to Admin Plugins Add New
  2. Search for “MCP Manager”
  3. Click “Install Now” then “Activate”

FAQ

Is my password secure?

Yes! MCP Manager uses WordPress’s native Application Passwords system. Each password is:
– Generated using WordPress’s secure methods
– Associated with your user account
– Visible in your profile for management
– Revocable at any time

Can I use this with multiple MCP clients?

Yes! You can generate separate passwords for each client (VS Code, Claude, GitHub Copilot, ChatGPT, and any custom client).

Where are my application passwords saved?

All application passwords are managed through WordPress’s native Application Passwords system. View and manage them at:
User Profile Account Management Application Passwords

What MCP clients are supported?

  • Visual Studio Code (with Copilot)
  • Anthropic Claude Desktop App
  • GitHub Copilot
  • OpenAI ChatGPT Codex
  • Any custom MCP client supporting the standard format

Can I revoke a password?

Yes! You can revoke any application password from your profile page under Account Management Application Passwords.

Is this compatible with multisite?

Yes! MCP Manager works with WordPress multisite installations. Each site can be configured independently.

Do I need to install additional software?

No additional software is needed on the WordPress side. Your MCP clients (VS Code extension, Claude app, etc.) handle the integration.

Recensioni

Non ci sono recensioni per questo plugin.

Contributi e sviluppo

“AcrossAI MCP Manager” è un software open source. Le persone che hanno contribuito allo sviluppo di questo plugin sono indicate di seguito.

Collaboratori

Changelog

0.0.9

  • Fix: Claude Code MCP Clients tab now shows a JSON config block instead of a claude mcp add shell command. The ~/.claude.json config file path is displayed correctly (was incorrectly listed as ~/.claude/mcp_servers.json), the snippet renders as a copy-pasteable mcpServers block with command/args/env, and the env now pins OAUTH_ENABLED: "false" alongside WP_API_URL / WP_API_USERNAME / WP_API_PASSWORD to keep the @automattic/mcp-wordpress-remote client from falling into an OAuth branch it can’t complete against an Application Password server. Instructions on the tab updated to match (“paste under the top-level key” — no more claude mcp add-json).
  • Internal: ACROSSAI_MCP_MANAGER_VERSION constant now tracks the plugin header. It had drifted at 0.0.6 across the 0.0.7 and 0.0.8 releases; this release resyncs it to 0.0.9. Consumers reading the constant to key cache entries or telemetry will see a version bump even though there are no functional changes since 0.0.8 beyond the Claude Code tab fix above.
  • Tests: repair 14 stale JSON fixtures. The ConcreteClientsTest golden fixtures for claude-desktop, vscode, github-copilot, codex, cursor, and custom were missing the WP_API_USERNAME env field that all 6 clients have emitted since Feature 004. Adding the field brings fixtures back in sync with the code — 49/49 tests now pass (was 35/49).

0.0.8

  • Dependencies: bump acrossai-co/main-menu to 0.0.11.

0.0.7

  • Docs: rewrite README.txt from the canonical baseline (proper Description, FAQ, Screenshots, install steps).
  • Docs: fix wp.org import warnings — real Contributors (raftaar1191), plugin-relevant Tags (mcp, ai, copilot, vscode, claude), and a Short Description tagline.
  • Header: refresh plugin header — Plugin URI https://acrossai.co/, Author raftaar1191, wp.org profile Author URI, License normalized to GPL-2.0-or-later.
  • Build: expand .distignore to exclude tooling / config / docs / tests / editor dirs from the wp.org build. .gitignore cleaned up.
  • CI: add GitHub Actions workflows for PHPStan, PHPCompatibility, PHPUnit (mcpclients suite), PHPCS, build-zip, and wp.org deploy.
  • Requirements: bump minimums to WordPress 7.0 / PHP 8.1.

0.0.6

  • Migrated the four internal DB modules (MCP Servers, CLI Auth Log, OAuth Tokens, OAuth Audit) to BerlinDB Core 3.0. Fresh installs create tables with BerlinDB-derived schemas; the phantom-version guard on every Table subclass silently self-heals a stamped-but-missing table on the next activation. This release ships to zero live installs — no data migration path is provided; sites with pre-migration schema must be recreated from scratch.
  • Added an “MCP” tab to the shared AcrossAI Settings page (?page=acrossai-settings) with three operator toggles: enable CLI connections (acrossai_mcp_npm_login_enabled), enable direct Claude Connectors mode (acrossai_mcp_claude_connectors_enabled), and Delete all data on uninstall (acrossai_mcp_uninstall_delete_data). Sibling to acrossai-abilities-manager’s Abilities tab.
  • BEHAVIOR CHANGE: uninstall.php now preserves ALL plugin data by default. The pre-Feature-012 build dropped acrossai_mcp_oauth_tokens + acrossai_mcp_oauth_audit unconditionally; this build preserves every wp_acrossai_mcp_* table and every acrossai_mcp_* option unless the operator explicitly ticks the “Delete all data on uninstall” checkbox on the MCP settings tab and saves. Sites that expected the pre-Feature-012 OAuth-table wipe on uninstall must tick the new checkbox before uninstall.
  • Removed the standalone “CLI Auth Log” admin submenu at ?page=acrossai_mcp_manager_cli_auth_log. The underlying wp_acrossai_mcp_cli_auth_logs table + Query/Row classes remain — they continue to power the OAuth authentication flow. Auth-log inspection is now available via WP-CLI (wp db query “SELECT … FROM wp_acrossai_mcp_cli_auth_logs”); the standalone submenu was redundant post-Feature-011.
  • Refactored the per-server-edit page (?page=acrossai_mcp_manager&action=edit) into a per-tab class hierarchy under admin/Partials/ServerTabs/. Ported 7 additional tabs from the reference plugin (Overview, npm, MCP Clients, WP-CLI, Tools, Abilities, MCP Tracker) plus 2 database-registered-only tabs (Update Server, Danger Zone). The full 11-tab UI is now available for database-registered servers; plugin-registered servers see 9 tabs.
  • NEW: Public Renderer layer under public/Renderers/ exposes 3 client-configuration blocks (npm, MCP Clients, Claude Connector) as a reusable API so third-party plugins (BuddyBoss, WooCommerce, other AcrossAI-family plugins) can embed the same UI on their own admin or frontend surfaces with zero code duplication. Public API surface: static Renderer::render() method + acrossai_mcp_render_client_block action hook + acrossai_mcp_client_block_context filter + acrossai_mcp_client_classes filter + shortcodes ([acrossai_mcp_npm_block], [acrossai_mcp_clients_block], [acrossai_mcp_claude_connector_block]) + REST endpoint (/wp-json/acrossai-mcp-manager/v1/generate-app-password) with defense-in-depth Application Password lockdown to get_current_user_id(). API is @experimental May change without notice before 1.0.0 (per DEC-CLIENT-RENDERER-PUBLIC-API). Restored CliAuthLogListTable + added ConnectorAuditLogListTable as per-server tab inspectors under DEC-ADMIN-SURFACE-PRUNE-CLI-AUTH-LOG’s blessed reintroduction path. See docs/integrations/buddyboss-example.md and docs/integrations/woocommerce-example.md for third-party integrator onboarding.
  • Adopted wpboilerplate/wpb-access-control v2 with per-server access rules, MCP-boundary enforcement via the mcp_adapter_pre_tool_call filter shipped by wordpress/mcp-adapter, and a shared Renderer block (AccessControlBlock) that third-party plugins can embed on their own admin surfaces. Fixes 3 fatal v1-API call sites (AccessControlTab.php, CliController.php /servers route, Main.php TODO block). Activator now creates the {prefix}mcp_manager_access_control table; uninstall opt-in gate purges the namespace + drops the table + deletes the version option. Two observability action hooks let operators log denials via any listener: acrossai_mcp_access_control_denied fires immediately before returning WP_Error / empty server list on deny (args: user_id, server_slug, tool_name-or-null, context_slug where context_slug is 'cli_servers' at CliController or 'mcp_tool_call' at MCP boundary); acrossai_mcp_access_control_missing_server fires when a server was DELETEd mid-flight (args: server_slug, tool_name, user_id). Minimal listener example: add_action('acrossai_mcp_access_control_denied', function($u,$s,$t,$c){ error_log("[AC deny] user=$u server=$s tool=$t via=$c"); }, 10, 4);. See DEC-ACCESS-CONTROL-V2-ADOPTION + D18 + D19 for the wrapper pattern, canonical MCP-boundary hook, and fail-open observability pattern.

0.0.5

  • Changed: access-control admin UI now loads assets from the wpb-access-control vendor package’s own compiled React bundle; removed plugin-bundled copies at assets/access-control/
  • Changed: replace AccessControlUI AJAX bootstrap with REST API registration via AccessControlManager::register_rest_api(); rules are now served and saved via dedicated REST endpoints
  • Changed: access-control tab renders a React component hydrated by the vendor webpack bundle instead of legacy plain-JS markup
  • Added: graceful degradation notice when vendor assets are unavailable — enforcement remains active
  • Updated: wpb-access-control to v1.0.0 (stable baseline); automattic/jetpack-autoloader to latest minor

0.0.4

  • Improved: bundle access-control UI assets (CSS + JS) directly in the plugin at assets/access-control/ so the admin panel works regardless of whether the wpb-access-control vendor package ships them

0.0.3

  • Dependencies: update wpb-access-control to BerlinDB-backed version; add berlindb/core; update bshaffer/oauth2-server-httpfoundation-bridge and symfony/deprecation-contracts
  • Fixed: remove removed AccessControlTable references; fixes fatal error on plugin activation
  • Fixed: access-control table is now auto-bootstrapped by RuleQuery — no manual maybe_create_table() needed
  • Fixed: remove dead save_access_control POST handler; access-control saves now handled by library AJAX
  • Fixed: update v1.5.0 legacy migration to use RuleQuery::set_rule() instead of removed AccessControlTable::update()

0.0.2

  • Security: sanitize and validate all $_GET/$_POST inputs with sanitize_key(), sanitize_text_field(), absint(), and wp_unslash()
  • Paths: replace hardcoded ABSPATH with get_home_path() for correct subdirectory-install support
  • Enqueue: remove all inline / blocks; move to external CSS/JS files loaded via wp_enqueue_style() and wp_enqueue_script()

0.0.1

  • Initial release
  • Support for VS Code, Claude, GitHub Copilot, ChatGPT Codex, and custom clients
  • Format #1 (Automattic-recommended) MCP configuration
  • Native WordPress Application Passwords integration
  • Dynamic configuration generation per provider
  • Full REST API support
  • Admin UI with client tabs
  • Copy-to-clipboard functionality