Dynamic Client Registration (DCR)
Dynamic Client Registration (DCR) allows applications to register themselves with AuthAction without manual configuration in the dashboard. This is useful for MCP (Model Context Protocol) servers, developer tools, and scenarios where clients need to onboard dynamically.
Overview
Section titled “Overview”With DCR enabled:
- Applications can register via the
POST /oauth2/registerendpoint. - Registered clients receive a Client ID and can obtain tokens for configured API servers.
- You control which authentication connections are available to dynamically registered clients.
Enabling DCR
Section titled “Enabling DCR”- Open the AuthAction Dashboard.
- Navigate to Settings > Advanced.
- Enable Dynamic Client Registration.
When enabled, any client can call the registration endpoint. Restrict this to trusted environments in production.
Registration Flow
Section titled “Registration Flow”- Client sends a registration request to
POST https://<tenant>.<region>.authaction.com/oauth2/register. - AuthAction creates the application and returns client credentials.
- Client uses the credentials to obtain tokens and access allowed API resources.
API Server Access
Section titled “API Server Access”For dynamically registered clients to access an API server (e.g. MCP API):
- Go to Applications > APIs.
- Select the API server.
- Open the Dynamic Clients tab.
- Enable Dynamic Client Access.
Related
Section titled “Related”- MCP Server Authorization: Full setup for MCP API resource servers.
- Applications Configuration: Manual application setup.