Descrizione
MCP Manager uses the standard @automattic/mcp-wordpress-remote@latest package with WordPress Application Passwords for the default remote flow. It also includes an optional experimental direct Claude Connectors mode backed by a WordPress-hosted OAuth approval flow.
MCP Manager is a WordPress plugin that enables seamless integration with Model Context Protocol (MCP) servers, allowing AI assistants and code editors to safely access your WordPress instance through secure application passwords.
Key Features
-
Multi-Client Support: Configure MCP for:
- VS Code with Copilot
- Claude Desktop App
- GitHub Copilot & Codex
- OpenAI ChatGPT Codex
- Custom MCP Clients
-
Secure Authentication: Uses WordPress native Application Passwords system
- One-click password generation
- Secure credential management
- Password revocation support
- Per-server Access Control still enforced after authentication
-
Easy Configuration:
- Copy-paste ready JSON configurations
- Per-provider configuration file paths
- Automatic top-level key detection
-
Format #1 Standard: Uses the Automattic-recommended MCP configuration format
- npx command execution
- @automattic/mcp-wordpress-remote@latest package
- Full environment variable support
How It Works
- Navigate to Settings MCP Manager
- Select your MCP client (VS Code, Claude, GitHub Copilot, ChatGPT, or Custom)
- Click “Generate New Application Password”
- Copy the ready-to-use JSON configuration
- Paste into your client’s configuration file
- Restart your MCP client
All application passwords are managed through WordPress’s native Application Passwords system and appear in your profile under Account Management.
CLI Connection and Authorization Flow
MCP Manager also supports a browser-assisted CLI connection flow for local MCP clients.
Typical command:
npx -y @acrossai/mcp-manager --siteurl=https://example.com --server=default-mcp-server
Flow summary:
- The CLI checks
/wp-json/acrossai-mcp-manager/v1/health - The CLI starts auth with
/wp-json/acrossai-mcp-manager/v1/auth/start - WordPress returns an
auth_codeand frontendauth_url - The CLI opens the frontend approval page at
/acrossai-mcp-manager/ - If needed, the user signs in through normal WordPress login
- The signed-in user approves access in the browser
- The CLI polls
/auth/statusuntil the request is approved - The CLI fetches the approved user’s accessible servers from
/servers - The CLI exchanges the approved code at
/auth/exchange - WordPress creates a one-time Application Password and the CLI writes the MCP client config
Terminology:
- Sign in / Log in = WordPress account authentication
- Connect = starting the CLI-to-site linking flow
- Authorize / Approve access = granting the CLI permission in the browser
Important notes:
- The frontend authorization page must never be cached
- Auth codes are single-use
/serversand/auth/exchangerespect per-server access control- User-facing copy should say CLI Connections rather than npm Login
- Generated remote MCP configs use Application Passwords and explicitly disable OAuth discovery in
@automattic/mcp-wordpress-remote
Experimental Direct Claude Connectors
An optional Claude Connectors Screen (Experimental) setting can enable a direct OAuth flow for Claude’s hosted connectors.
When the global feature toggle is enabled and a specific server is configured in its Claude Connector tab, the plugin exposes:
/.well-known/oauth-authorization-server/.well-known/oauth-protected-resource?resource=<mcp-url>/acrossai-mcp-connectors/oauth/authorize//wp-json/acrossai-mcp-manager/v1/connector/oauth/token
Important notes:
- Disabled by default
- The Application Password flow remains available and supported
- The master experimental toggle is global, but OAuth client settings are stored per server
- Direct connector approval signs Claude in as a WordPress user
- Per-server Access Control still applies to every MCP request after OAuth
- Public HTTPS is recommended for hosted connector usage
Provider Configuration Paths
- VS Code: ~/.config/Code/User/globalStorage/Copilot.copilot-chat/mcp.json (top-level key: “servers”)
- Claude: ~/Library/Application Support/Claude/claude_desktop_config.json (top-level key: “mcpServers”)
- GitHub Copilot: ~/.gh-copilot/config.json (top-level key: “servers”)
- OpenAI ChatGPT: ~/.config/chatgpt/config.json (top-level key: “servers”)
- Custom: ./your-project/.mcp/config.json (top-level key: configurable)
Requirements
- WordPress 5.9 or higher
- PHP 7.4 or higher
- WordPress Application Passwords support (built-in since WP 5.6)
Support & Contribution
For issues, feature requests, or contributions, visit the plugin repository.
Questions? Check the FAQ section or look for documentation in the plugin settings page.
Development
This plugin follows WordPress coding standards and best practices:
– PHP 7.4+ compatible
– Full object-oriented architecture
– Secure nonce verification
– Proper capability checks
– Sanitized input validation
– Escaped output
License
This plugin is licensed under the GPL-2.0-or-later license. See LICENSE file for details.
Credits
MCP Manager is built with:
– WordPress native APIs
– Automattic’s MCP WordPress Remote package
– WordPress Application Passwords system
Developed with ❤️ for the WordPress community.
Installazione
- Upload the plugin directory to
/wp-content/plugins/ - Activate the plugin through the ‘Plugins’ menu in WordPress
- Navigate to Settings MCP Manager to configure
Or:
- Go to Admin Plugins Add New
- Search for “MCP Manager”
- Click “Install Now” then “Activate”
FAQ
-
Is my password secure?
-
Yes! MCP Manager uses WordPress’s native Application Passwords system. Each password is:
– Generated using WordPress’s secure methods
– Associated with your user account
– Visible in your profile for management
– Revocable at any time -
Can I use this with multiple MCP clients?
-
Yes! You can generate separate passwords for each client (VS Code, Claude, GitHub Copilot, ChatGPT, and any custom client).
-
Where are my application passwords saved?
-
All application passwords are managed through WordPress’s native Application Passwords system. View and manage them at:
User Profile Account Management Application Passwords -
What MCP clients are supported?
-
- Visual Studio Code (with Copilot)
- Anthropic Claude Desktop App
- GitHub Copilot
- OpenAI ChatGPT Codex
- Any custom MCP client supporting the standard format
-
Can I revoke a password?
-
Yes! You can revoke any application password from your profile page under Account Management Application Passwords.
-
Is this compatible with multisite?
-
Yes! MCP Manager works with WordPress multisite installations. Each site can be configured independently.
-
Do I need to install additional software?
-
No additional software is needed on the WordPress side. Your MCP clients (VS Code extension, Claude app, etc.) handle the integration.
Recensioni
Non ci sono recensioni per questo plugin.
Contributi e sviluppo
“AcrossAI MCP Manager” è un software open source. Le persone che hanno contribuito allo sviluppo di questo plugin sono indicate di seguito.
CollaboratoriTraduci “AcrossAI MCP Manager” nella tua lingua.
Ti interessa lo sviluppo?
Esplora il codice segui il repository SVN, segui il log delle modifiche tramite RSS.
Changelog
0.0.9
- Fix: Claude Code MCP Clients tab now shows a JSON config block instead of a
claude mcp addshell command. The~/.claude.jsonconfig file path is displayed correctly (was incorrectly listed as~/.claude/mcp_servers.json), the snippet renders as a copy-pasteablemcpServersblock withcommand/args/env, and the env now pinsOAUTH_ENABLED: "false"alongsideWP_API_URL/WP_API_USERNAME/WP_API_PASSWORDto keep the@automattic/mcp-wordpress-remoteclient from falling into an OAuth branch it can’t complete against an Application Password server. Instructions on the tab updated to match (“paste under the top-level key” — no moreclaude mcp add-json). - Internal:
ACROSSAI_MCP_MANAGER_VERSIONconstant now tracks the plugin header. It had drifted at0.0.6across the 0.0.7 and 0.0.8 releases; this release resyncs it to0.0.9. Consumers reading the constant to key cache entries or telemetry will see a version bump even though there are no functional changes since 0.0.8 beyond the Claude Code tab fix above. - Tests: repair 14 stale JSON fixtures. The
ConcreteClientsTestgolden fixtures forclaude-desktop,vscode,github-copilot,codex,cursor, andcustomwere missing theWP_API_USERNAMEenv field that all 6 clients have emitted since Feature 004. Adding the field brings fixtures back in sync with the code — 49/49 tests now pass (was 35/49).
0.0.8
- Dependencies: bump
acrossai-co/main-menuto0.0.11.
0.0.7
- Docs: rewrite README.txt from the canonical baseline (proper Description, FAQ, Screenshots, install steps).
- Docs: fix wp.org import warnings — real Contributors (
raftaar1191), plugin-relevant Tags (mcp, ai, copilot, vscode, claude), and a Short Description tagline. - Header: refresh plugin header — Plugin URI
https://acrossai.co/, Authorraftaar1191, wp.org profile Author URI, License normalized toGPL-2.0-or-later. - Build: expand
.distignoreto exclude tooling / config / docs / tests / editor dirs from the wp.org build..gitignorecleaned up. - CI: add GitHub Actions workflows for PHPStan, PHPCompatibility, PHPUnit (mcpclients suite), PHPCS, build-zip, and wp.org deploy.
- Requirements: bump minimums to WordPress 7.0 / PHP 8.1.
0.0.6
- Migrated the four internal DB modules (MCP Servers, CLI Auth Log, OAuth Tokens, OAuth Audit) to BerlinDB Core 3.0. Fresh installs create tables with BerlinDB-derived schemas; the phantom-version guard on every Table subclass silently self-heals a stamped-but-missing table on the next activation. This release ships to zero live installs — no data migration path is provided; sites with pre-migration schema must be recreated from scratch.
- Added an “MCP” tab to the shared AcrossAI Settings page (?page=acrossai-settings) with three operator toggles: enable CLI connections (acrossai_mcp_npm_login_enabled), enable direct Claude Connectors mode (acrossai_mcp_claude_connectors_enabled), and Delete all data on uninstall (acrossai_mcp_uninstall_delete_data). Sibling to acrossai-abilities-manager’s Abilities tab.
- BEHAVIOR CHANGE: uninstall.php now preserves ALL plugin data by default. The pre-Feature-012 build dropped acrossai_mcp_oauth_tokens + acrossai_mcp_oauth_audit unconditionally; this build preserves every wp_acrossai_mcp_* table and every acrossai_mcp_* option unless the operator explicitly ticks the “Delete all data on uninstall” checkbox on the MCP settings tab and saves. Sites that expected the pre-Feature-012 OAuth-table wipe on uninstall must tick the new checkbox before uninstall.
- Removed the standalone “CLI Auth Log” admin submenu at ?page=acrossai_mcp_manager_cli_auth_log. The underlying wp_acrossai_mcp_cli_auth_logs table + Query/Row classes remain — they continue to power the OAuth authentication flow. Auth-log inspection is now available via WP-CLI (wp db query “SELECT … FROM wp_acrossai_mcp_cli_auth_logs”); the standalone submenu was redundant post-Feature-011.
- Refactored the per-server-edit page (?page=acrossai_mcp_manager&action=edit) into a per-tab class hierarchy under admin/Partials/ServerTabs/. Ported 7 additional tabs from the reference plugin (Overview, npm, MCP Clients, WP-CLI, Tools, Abilities, MCP Tracker) plus 2 database-registered-only tabs (Update Server, Danger Zone). The full 11-tab UI is now available for database-registered servers; plugin-registered servers see 9 tabs.
- NEW: Public Renderer layer under public/Renderers/ exposes 3 client-configuration blocks (npm, MCP Clients, Claude Connector) as a reusable API so third-party plugins (BuddyBoss, WooCommerce, other AcrossAI-family plugins) can embed the same UI on their own admin or frontend surfaces with zero code duplication. Public API surface: static Renderer::render() method + acrossai_mcp_render_client_block action hook + acrossai_mcp_client_block_context filter + acrossai_mcp_client_classes filter + shortcodes ([acrossai_mcp_npm_block], [acrossai_mcp_clients_block], [acrossai_mcp_claude_connector_block]) + REST endpoint (/wp-json/acrossai-mcp-manager/v1/generate-app-password) with defense-in-depth Application Password lockdown to get_current_user_id(). API is @experimental May change without notice before 1.0.0 (per DEC-CLIENT-RENDERER-PUBLIC-API). Restored CliAuthLogListTable + added ConnectorAuditLogListTable as per-server tab inspectors under DEC-ADMIN-SURFACE-PRUNE-CLI-AUTH-LOG’s blessed reintroduction path. See docs/integrations/buddyboss-example.md and docs/integrations/woocommerce-example.md for third-party integrator onboarding.
- Adopted wpboilerplate/wpb-access-control v2 with per-server access rules, MCP-boundary enforcement via the mcp_adapter_pre_tool_call filter shipped by wordpress/mcp-adapter, and a shared Renderer block (AccessControlBlock) that third-party plugins can embed on their own admin surfaces. Fixes 3 fatal v1-API call sites (AccessControlTab.php, CliController.php /servers route, Main.php TODO block). Activator now creates the {prefix}mcp_manager_access_control table; uninstall opt-in gate purges the namespace + drops the table + deletes the version option. Two observability action hooks let operators log denials via any listener:
acrossai_mcp_access_control_deniedfires immediately before returning WP_Error / empty server list on deny (args: user_id, server_slug, tool_name-or-null, context_slug where context_slug is'cli_servers'at CliController or'mcp_tool_call'at MCP boundary);acrossai_mcp_access_control_missing_serverfires when a server was DELETEd mid-flight (args: server_slug, tool_name, user_id). Minimal listener example:add_action('acrossai_mcp_access_control_denied', function($u,$s,$t,$c){ error_log("[AC deny] user=$u server=$s tool=$t via=$c"); }, 10, 4);. See DEC-ACCESS-CONTROL-V2-ADOPTION + D18 + D19 for the wrapper pattern, canonical MCP-boundary hook, and fail-open observability pattern.
0.0.5
- Changed: access-control admin UI now loads assets from the wpb-access-control vendor package’s own compiled React bundle; removed plugin-bundled copies at assets/access-control/
- Changed: replace AccessControlUI AJAX bootstrap with REST API registration via AccessControlManager::register_rest_api(); rules are now served and saved via dedicated REST endpoints
- Changed: access-control tab renders a React component hydrated by the vendor webpack bundle instead of legacy plain-JS markup
- Added: graceful degradation notice when vendor assets are unavailable — enforcement remains active
- Updated: wpb-access-control to v1.0.0 (stable baseline); automattic/jetpack-autoloader to latest minor
0.0.4
- Improved: bundle access-control UI assets (CSS + JS) directly in the plugin at assets/access-control/ so the admin panel works regardless of whether the wpb-access-control vendor package ships them
0.0.3
- Dependencies: update wpb-access-control to BerlinDB-backed version; add berlindb/core; update bshaffer/oauth2-server-httpfoundation-bridge and symfony/deprecation-contracts
- Fixed: remove removed AccessControlTable references; fixes fatal error on plugin activation
- Fixed: access-control table is now auto-bootstrapped by RuleQuery — no manual maybe_create_table() needed
- Fixed: remove dead save_access_control POST handler; access-control saves now handled by library AJAX
- Fixed: update v1.5.0 legacy migration to use RuleQuery::set_rule() instead of removed AccessControlTable::update()
0.0.2
- Security: sanitize and validate all $_GET/$_POST inputs with sanitize_key(), sanitize_text_field(), absint(), and wp_unslash()
- Paths: replace hardcoded ABSPATH with get_home_path() for correct subdirectory-install support
- Enqueue: remove all inline / blocks; move to external CSS/JS files loaded via wp_enqueue_style() and wp_enqueue_script()
0.0.1
- Initial release
- Support for VS Code, Claude, GitHub Copilot, ChatGPT Codex, and custom clients
- Format #1 (Automattic-recommended) MCP configuration
- Native WordPress Application Passwords integration
- Dynamic configuration generation per provider
- Full REST API support
- Admin UI with client tabs
- Copy-to-clipboard functionality