Blazing MCP Server

Production-grade Model Context Protocol (MCP) integration for Odoo. Safely expose controlled tools to AI agents and MCP clients with scopes, per-model policies, and full auditing.

Key Features

• Bearer tokens with hashed storage, expiry and rate limiting
• Scopes: read, write, delete, execute
• Per-model policies: operation flags, field whitelist, domain guard
• Per-method allowlist for execute
• Audit log: endpoint, payload, response code, duration, IP, User-Agent
• Admin UI: Settings toggle, Tokens, Scopes, Policies, Audit Logs, Token Wizard
• JSON endpoints under /mcp/v1 with strict validation and errors

Why This App

Connect Odoo to MCP-aware clients and LLMs without exposing your database directly. Enforce least-privilege via scopes and policies, and keep a complete audit trail of every request for compliance and observability.

Setup

1. Install the module.
2. Settings → enable Enable MCP Server.
3. MCP → Security → Create Token (Token Wizard). Assign scopes and policies. Copy the one-time secret.
4. Call endpoints (JSON, POST): /mcp/v1/health, /mcp/v1/capabilities, /mcp/v1/call.
5. Tools: search_read, create, write, unlink, execute_action.

Security

• All requests require a valid Bearer token
• Scopes and policies restrict accessible models, fields and methods
• Domain guard enforces record-level constraints (e.g., per company)
• Rate limiting mitigates abuse; all calls are audited

Compatibility

Built for Odoo 17. Compatible with later series (18, 19) assuming standard APIs. We recommend publishing a branch per Odoo major version for optimal marketplace experience.

Support

Use the support contact from the app page. Include your Odoo version, a short description of your use case, and any relevant entries from MCP Audit Logs.