MCP Token Scopes and Security

MCP Token Management\n\n### Creating Tokens\n1. Navigate to Settings > API Keys\n2. Click "Create MCP Token"\n3. Name your token purposefully\n4. Select minimal required scopes\n\n### Available Scopes (30+)\nyaml\nWorkflows:\n - workflows:read\n - workflows:write\n - workflows:execute\n - workflows:delete\n\nKnowledge Base:\n - knowledge:read\n - knowledge:write\n - knowledge:query\n\nToolkits:\n - toolkits:read\n - toolkits:install\n - toolkits:invoke\n\nRecipes:\n - recipes:read\n - recipes:write\n - recipes:design\n\n\n### Security Best Practices\n1. Principle of Least Privilege: Only grant necessary scopes\n2. Token Rotation: Regenerate tokens periodically\n3. Environment Variables: Never hardcode tokens\n4. Monitoring: Review token usage in dashboard\n\n### Integration Examples\njson\n// Claude Desktop config\n{\n "mcpServers": {\n "flowdot": {\n "command": "npx",\n "args": ["@flowdot.ai/mcp-server"],\n "env": {\n "FLOWDOT_TOKEN": "mcp_token_here"\n }\n }\n }\n}\n