Prelaunch MCP Server

ShortURL MCP

ShortURL.bot is preparing a hosted remote MCP server backed by the same public client API used by external integrations. When launched, it will keep workspace scope, quota accounting, and payload contracts aligned across REST and MCP instead of creating a second domain model.

Prelaunch note: MCP is not publicly launched yet. Treat the endpoints and tool list below as planned production details until launch is announced.

Domain note: 2s.gg is legacy-only for existing resources. Creation tools should omit domain to use the default active domain or choose another active domain.

Plan note: MCP tools will follow the same subscription quotas, feature entitlements, reporting visibility, and export rights as the web dashboard. The underlying public API rate limit is planned to remain 800 requests per IP per minute.

Planned endpoint: https://mcp.shorturl.bot/mcp

Transport

Planned Streamable HTTP MCP endpoint at /mcp. At launch, the server is expected to accept POST only and expose /healthz for readiness checks.

Discovery

OAuth discovery documents are planned at /.well-known/oauth-protected-resource and /.well-known/oauth-authorization-server.

Credential model

The MCP layer will reuse existing ShortURL API keys. The API key will determine subscription access and workspace scope.

Authentication modes

Hosted OAuth clients

For hosted clients such as ChatGPT, Claude, and Copilot, the planned server will support client registration plus the /authorize, /token, and /revoke flow with S256 PKCE.

Planned scopes: mcp offline_access
The authorization page will ask the user for a ShortURL API key
The managed API key will be stored encrypted server-side

Direct bearer mode

Clients that can send a static bearer token are expected to call the MCP endpoint directly with an existing ShortURL API key after launch.

Planned header format:
Authorization: Bearer sk_live_...

Planned tool surface

Workspace and subscription

listWorkspaces
getSubscriptionUsage

QR codes

listQrCodes, getQrCode, updateQrCode
createQrCode, getQrCodeImage

Pages and assets

listPages, createPage, getPage, updatePage, deletePage
publishPage, unpublishPage, uploadAsset

Insights

getInsightSummary
getInsightAccessLog
getInsightAssets

Planned discovery and OAuth endpoints

https://mcp.shorturl.bot/.well-known/oauth-protected-resource
https://mcp.shorturl.bot/.well-known/oauth-authorization-server
https://mcp.shorturl.bot/register
https://mcp.shorturl.bot/authorize
https://mcp.shorturl.bot/token
https://mcp.shorturl.bot/revoke

If you need the underlying REST schema or payload examples today, use the API reference. After launch, the MCP server will delegate business operations to the same public API base at https://api.shorturl.bot/v1.