Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.mcpcore.io/llms.txt

Use this file to discover all available pages before exploring further.

How it works

When a server is set to Public mode, MCPCore forwards every incoming MCP request to your tools without checking any credentials. There is no API key to distribute, no token to acquire, and no configuration required on the client side.

When to use it

  • Demos and prototypes — share a link and let anyone test your tools
  • Read-only public data — tools that query open APIs (GitHub public repos, weather APIs, etc.)
  • Local development — fastest to set up when iterating on tool logic
Do not use Public mode for tools that access private data, perform write operations, or consume paid APIs. Anyone with your endpoint URL can call these tools — including automated scanners.

Configure

1

Open Server Settings

Go to your server’s Settings tab in the dashboard.
2

Select Public

Under Security mode, select Public and click Save.
No additional configuration is needed.

Client configuration

When connecting to a Public server, no auth header is required: 
{
  "mcpServers": {
    "my-server": {
      "url": "https://your-subdomain.mcpcore.io/mcp"
    }
  }
}

Switching away from Public

If you decide to lock down the server later, switch to API Key mode from the Settings tab. The endpoint URL does not change, and your tool code does not need to be modified.