docspace MCP Server

Connect to docspace

Hosted endpoint — paste into any MCP client.

Environment variables

Configuration this server reads at startup.

• DOCSPACE_BASE_URL

  The base URL of the DocSpace instance for API requests.

• DOCSPACE_API_KEYSecret

  The API key for accessing the API.

• DOCSPACE_TRANSPORT

  The transport protocol to use for communication with the MCP server.

• DOCSPACE_DYNAMIC

  The flag that indicates whether the MCP server should use meta tools.

• DOCSPACE_TOOLSETS

  The list of toolsets to enable for the MCP server.

• DOCSPACE_ENABLED_TOOLS

  The list of tools to enable for the MCP server.

• DOCSPACE_DISABLED_TOOLS

  The list of tools to disable for the MCP server.

• DOCSPACE_USER_AGENT

  The user agent to include in the User-Agent header for API requests.

• DOCSPACE_BASE_URL

  The base URL of the DocSpace instance for API requests.

• DOCSPACE_AUTHORIZATIONSecret

  The raw value to include in the Authorization header for API requests.

• DOCSPACE_API_KEYSecret

  The API key for accessing the API.

• DOCSPACE_AUTH_TOKENSecret

  The Personal Access Token (PAT) for accessing the API.

• DOCSPACE_USERNAME

  The username for accessing the API using basic authentication.

• DOCSPACE_PASSWORDSecret

  The password for accessing the API using basic authentication.

• DOCSPACE_TRANSPORT

  The transport protocol to use for communication with the MCP server.

• DOCSPACE_DYNAMIC

  The flag that indicates whether the MCP server should use meta tools.

• DOCSPACE_TOOLSETS

  The list of toolsets to enable for the MCP server.

• DOCSPACE_ENABLED_TOOLS

  The list of tools to enable for the MCP server.

• DOCSPACE_DISABLED_TOOLS

  The list of tools to disable for the MCP server.

• DOCSPACE_SESSION_TTL

  The time-to-live (TTL) for HTTP sessions in milliseconds.

• DOCSPACE_SESSION_INTERVAL

  The interval for checking HTTP sessions for expiration in milliseconds.

• DOCSPACE_USER_AGENT

  The user agent to include in the User-Agent header for API requests.

• DOCSPACE_BASE_URL

  The base URL of the DocSpace instance for API requests.

• DOCSPACE_AUTHORIZATIONSecret

  The raw value to include in the Authorization header for API requests.

• DOCSPACE_API_KEYSecret

  The API key for accessing the API.

• DOCSPACE_AUTH_TOKENSecret

  The Personal Access Token (PAT) for accessing the API.

• DOCSPACE_USERNAME

  The username for accessing the API using basic authentication.

• DOCSPACE_PASSWORDSecret

  The password for accessing the API using basic authentication.

• DOCSPACE_OAUTH_BASE_URL

  The base URL of the DocSpace OAuth service for OAuth requests.

• DOCSPACE_OAUTH_CLIENT_ID

  The client ID of the OAuth application.

• DOCSPACE_OAUTH_CLIENT_SECRETSecret

  The client secret of the OAuth application.

• DOCSPACE_OAUTH_AUTH_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_AUTH_TOKEN_TTL

  The time-to-live (TTL) for OAuth access tokens in milliseconds.

• DOCSPACE_OAUTH_AUTH_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth state tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_TTL

  The time-to-live (TTL) for OAuth state tokens in milliseconds.

• DOCSPACE_OAUTH_STATE_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth state tokens.

• DOCSPACE_SERVER_BASE_URL

  The base URL of the server.

• DOCSPACE_HOST

  The host to bind the server to.

• DOCSPACE_PORT

  The port to bind the server to.

• DOCSPACE_SERVER_PROXY_HOPS

  The number of proxy servers between the server and the client.

• DOCSPACE_SERVER_CORS_MCP_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_MCP_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_CAPACITY

  The maximum number of requests allowed per window for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_WINDOW

  The time window in milliseconds for the rate limit for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_CAPACITY

  The maximum number of requests allowed per window for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_CAPACITY

  The maximum number of requests allowed per window for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_WINDOW

  The time window in milliseconds for the rate limit for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_CAPACITY

  The maximum number of requests allowed per window for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_WINDOW

  The time window in milliseconds for the rate limit for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_CAPACITY

  The maximum number of requests allowed per window for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_WINDOW

  The time window in milliseconds for the rate limit for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_CAPACITY

  The maximum number of requests allowed per window for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_CAPACITY

  The maximum number of requests allowed per window for the OAuth token endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token endpoint.

• DOCSPACE_REQUEST_QUERY

  The flag that indicates whether the server should accept configuration via query parameters in incoming requests.

• DOCSPACE_REQUEST_AUTHORIZATION_HEADER

  The flag that indicates whether the server should check for the Authorization header in incoming requests.

• DOCSPACE_REQUEST_HEADER_PREFIX

  The prefix to use with custom configuration headers.

• DOCSPACE_TRANSPORT

  The transport protocol to use for communication with the MCP server.

• DOCSPACE_DYNAMIC

  The flag that indicates whether the MCP server should use meta tools.

• DOCSPACE_TOOLSETS

  The list of toolsets to enable for the MCP server.

• DOCSPACE_ENABLED_TOOLS

  The list of tools to enable for the MCP server.

• DOCSPACE_DISABLED_TOOLS

  The list of tools to disable for the MCP server.

• DOCSPACE_SESSION_TTL

  The time-to-live (TTL) for HTTP sessions in milliseconds.

• DOCSPACE_SESSION_INTERVAL

  The interval for checking HTTP sessions for expiration in milliseconds.

• DOCSPACE_USER_AGENT

  The user agent to include in the User-Agent header for API requests.

• DOCSPACE_BASE_URL

  The base URL of the DocSpace instance for API requests.

• DOCSPACE_AUTHORIZATIONSecret

  The raw value to include in the Authorization header for API requests.

• DOCSPACE_API_KEYSecret

  The API key for accessing the API.

• DOCSPACE_AUTH_TOKENSecret

  The Personal Access Token (PAT) for accessing the API.

• DOCSPACE_USERNAME

  The username for accessing the API using basic authentication.

• DOCSPACE_PASSWORDSecret

  The password for accessing the API using basic authentication.

• DOCSPACE_OAUTH_BASE_URL

  The base URL of the DocSpace OAuth service for OAuth requests.

• DOCSPACE_OAUTH_CLIENT_ID

  The client ID of the OAuth application.

• DOCSPACE_OAUTH_CLIENT_SECRETSecret

  The client secret of the OAuth application.

• DOCSPACE_OAUTH_AUTH_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_AUTH_TOKEN_TTL

  The time-to-live (TTL) for OAuth access tokens in milliseconds.

• DOCSPACE_OAUTH_AUTH_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth state tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_TTL

  The time-to-live (TTL) for OAuth state tokens in milliseconds.

• DOCSPACE_OAUTH_STATE_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth state tokens.

• DOCSPACE_SERVER_BASE_URL

  The base URL of the server.

• DOCSPACE_HOST

  The host to bind the server to.

• DOCSPACE_PORT

  The port to bind the server to.

• DOCSPACE_SERVER_PROXY_HOPS

  The number of proxy servers between the server and the client.

• DOCSPACE_SERVER_CORS_MCP_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_MCP_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_CAPACITY

  The maximum number of requests allowed per window for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_WINDOW

  The time window in milliseconds for the rate limit for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_CAPACITY

  The maximum number of requests allowed per window for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_CAPACITY

  The maximum number of requests allowed per window for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_WINDOW

  The time window in milliseconds for the rate limit for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_CAPACITY

  The maximum number of requests allowed per window for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_WINDOW

  The time window in milliseconds for the rate limit for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_CAPACITY

  The maximum number of requests allowed per window for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_WINDOW

  The time window in milliseconds for the rate limit for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_CAPACITY

  The maximum number of requests allowed per window for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_CAPACITY

  The maximum number of requests allowed per window for the OAuth token endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token endpoint.

• DOCSPACE_REQUEST_QUERY

  The flag that indicates whether the server should accept configuration via query parameters in incoming requests.

• DOCSPACE_REQUEST_AUTHORIZATION_HEADER

  The flag that indicates whether the server should check for the Authorization header in incoming requests.

• DOCSPACE_REQUEST_HEADER_PREFIX

  The prefix to use with custom configuration headers.

• DOCSPACE_TRANSPORT

  The transport protocol to use for communication with the MCP server.

• DOCSPACE_DYNAMIC

  The flag that indicates whether the MCP server should use meta tools.

• DOCSPACE_TOOLSETS

  The list of toolsets to enable for the MCP server.

• DOCSPACE_ENABLED_TOOLS

  The list of tools to enable for the MCP server.

• DOCSPACE_DISABLED_TOOLS

  The list of tools to disable for the MCP server.

• DOCSPACE_USER_AGENT

  The user agent to include in the User-Agent header for API requests.

• DOCSPACE_BASE_URL

  The base URL of the DocSpace instance for API requests.

• DOCSPACE_AUTHORIZATIONSecret

  The raw value to include in the Authorization header for API requests.

• DOCSPACE_API_KEYSecret

  The API key for accessing the API.

• DOCSPACE_AUTH_TOKENSecret

  The Personal Access Token (PAT) for accessing the API.

• DOCSPACE_USERNAME

  The username for accessing the API using basic authentication.

• DOCSPACE_PASSWORDSecret

  The password for accessing the API using basic authentication.

• DOCSPACE_TRANSPORT

  The transport protocol to use for communication with the MCP server.

• DOCSPACE_DYNAMIC

  The flag that indicates whether the MCP server should use meta tools.

• DOCSPACE_TOOLSETS

  The list of toolsets to enable for the MCP server.

• DOCSPACE_ENABLED_TOOLS

  The list of tools to enable for the MCP server.

• DOCSPACE_DISABLED_TOOLS

  The list of tools to disable for the MCP server.

• DOCSPACE_SESSION_TTL

  The time-to-live (TTL) for HTTP sessions in milliseconds.

• DOCSPACE_SESSION_INTERVAL

  The interval for checking HTTP sessions for expiration in milliseconds.

• DOCSPACE_USER_AGENT

  The user agent to include in the User-Agent header for API requests.

• DOCSPACE_BASE_URL

  The base URL of the DocSpace instance for API requests.

• DOCSPACE_AUTHORIZATIONSecret

  The raw value to include in the Authorization header for API requests.

• DOCSPACE_API_KEYSecret

  The API key for accessing the API.

• DOCSPACE_AUTH_TOKENSecret

  The Personal Access Token (PAT) for accessing the API.

• DOCSPACE_USERNAME

  The username for accessing the API using basic authentication.

• DOCSPACE_PASSWORDSecret

  The password for accessing the API using basic authentication.

• DOCSPACE_OAUTH_BASE_URL

  The base URL of the DocSpace OAuth service for OAuth requests.

• DOCSPACE_OAUTH_CLIENT_ID

  The client ID of the OAuth application.

• DOCSPACE_OAUTH_CLIENT_SECRETSecret

  The client secret of the OAuth application.

• DOCSPACE_OAUTH_AUTH_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_AUTH_TOKEN_TTL

  The time-to-live (TTL) for OAuth access tokens in milliseconds.

• DOCSPACE_OAUTH_AUTH_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth state tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_TTL

  The time-to-live (TTL) for OAuth state tokens in milliseconds.

• DOCSPACE_OAUTH_STATE_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth state tokens.

• DOCSPACE_SERVER_BASE_URL

  The base URL of the server.

• DOCSPACE_HOST

  The host to bind the server to.

• DOCSPACE_PORT

  The port to bind the server to.

• DOCSPACE_SERVER_PROXY_HOPS

  The number of proxy servers between the server and the client.

• DOCSPACE_SERVER_CORS_MCP_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_MCP_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_CAPACITY

  The maximum number of requests allowed per window for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_WINDOW

  The time window in milliseconds for the rate limit for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_CAPACITY

  The maximum number of requests allowed per window for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_CAPACITY

  The maximum number of requests allowed per window for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_WINDOW

  The time window in milliseconds for the rate limit for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_CAPACITY

  The maximum number of requests allowed per window for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_WINDOW

  The time window in milliseconds for the rate limit for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_CAPACITY

  The maximum number of requests allowed per window for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_WINDOW

  The time window in milliseconds for the rate limit for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_CAPACITY

  The maximum number of requests allowed per window for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_CAPACITY

  The maximum number of requests allowed per window for the OAuth token endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token endpoint.

• DOCSPACE_REQUEST_QUERY

  The flag that indicates whether the server should accept configuration via query parameters in incoming requests.

• DOCSPACE_REQUEST_AUTHORIZATION_HEADER

  The flag that indicates whether the server should check for the Authorization header in incoming requests.

• DOCSPACE_REQUEST_HEADER_PREFIX

  The prefix to use with custom configuration headers.

• DOCSPACE_TRANSPORT

  The transport protocol to use for communication with the MCP server.

• DOCSPACE_DYNAMIC

  The flag that indicates whether the MCP server should use meta tools.

• DOCSPACE_TOOLSETS

  The list of toolsets to enable for the MCP server.

• DOCSPACE_ENABLED_TOOLS

  The list of tools to enable for the MCP server.

• DOCSPACE_DISABLED_TOOLS

  The list of tools to disable for the MCP server.

• DOCSPACE_SESSION_TTL

  The time-to-live (TTL) for HTTP sessions in milliseconds.

• DOCSPACE_SESSION_INTERVAL

  The interval for checking HTTP sessions for expiration in milliseconds.

• DOCSPACE_USER_AGENT

  The user agent to include in the User-Agent header for API requests.

• DOCSPACE_BASE_URL

  The base URL of the DocSpace instance for API requests.

• DOCSPACE_AUTHORIZATIONSecret

  The raw value to include in the Authorization header for API requests.

• DOCSPACE_API_KEYSecret

  The API key for accessing the API.

• DOCSPACE_AUTH_TOKENSecret

  The Personal Access Token (PAT) for accessing the API.

• DOCSPACE_USERNAME

  The username for accessing the API using basic authentication.

• DOCSPACE_PASSWORDSecret

  The password for accessing the API using basic authentication.

• DOCSPACE_OAUTH_BASE_URL

  The base URL of the DocSpace OAuth service for OAuth requests.

• DOCSPACE_OAUTH_CLIENT_ID

  The client ID of the OAuth application.

• DOCSPACE_OAUTH_CLIENT_SECRETSecret

  The client secret of the OAuth application.

• DOCSPACE_OAUTH_AUTH_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_AUTH_TOKEN_TTL

  The time-to-live (TTL) for OAuth access tokens in milliseconds.

• DOCSPACE_OAUTH_AUTH_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth access tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_ALGORITHM

  The algorithm to use for signing OAuth state tokens.

• DOCSPACE_OAUTH_STATE_TOKEN_TTL

  The time-to-live (TTL) for OAuth state tokens in milliseconds.

• DOCSPACE_OAUTH_STATE_TOKEN_SECRET_KEYSecret

  The secret key to use for signing OAuth state tokens.

• DOCSPACE_SERVER_BASE_URL

  The base URL of the server.

• DOCSPACE_HOST

  The host to bind the server to.

• DOCSPACE_PORT

  The port to bind the server to.

• DOCSPACE_SERVER_PROXY_HOPS

  The number of proxy servers between the server and the client.

• DOCSPACE_SERVER_CORS_MCP_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_MCP_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to MCP endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_ORIGIN

  The list of allowed origins to include in the Access-Control-Allow-Origin header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_CORS_OAUTH_MAX_AGE

  The maximum age in milliseconds to include in the Access-Control-Max-Age header for CORS requests to OAuth endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_CAPACITY

  The maximum number of requests allowed per window for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_MCP_WINDOW

  The time window in milliseconds for the rate limit for the MCP endpoints.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_SERVER_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth server metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_CAPACITY

  The maximum number of requests allowed per window for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_RESOURCE_METADATA_WINDOW

  The time window in milliseconds for the rate limit for the OAuth resource metadata endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_CAPACITY

  The maximum number of requests allowed per window for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_AUTHORIZE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth authorization endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_CAPACITY

  The maximum number of requests allowed per window for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_CALLBACK_WINDOW

  The time window in milliseconds for the rate limit for the OAuth callback endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_CAPACITY

  The maximum number of requests allowed per window for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_INTROSPECT_WINDOW

  The time window in milliseconds for the rate limit for the OAuth introspection endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_CAPACITY

  The maximum number of requests allowed per window for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REGISTER_WINDOW

  The time window in milliseconds for the rate limit for the OAuth client registration endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_CAPACITY

  The maximum number of requests allowed per window for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_REVOKE_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token revocation endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_CAPACITY

  The maximum number of requests allowed per window for the OAuth token endpoint.

• DOCSPACE_SERVER_RATE_LIMITS_OAUTH_TOKEN_WINDOW

  The time window in milliseconds for the rate limit for the OAuth token endpoint.

• DOCSPACE_REQUEST_QUERY

  The flag that indicates whether the server should accept configuration via query parameters in incoming requests.

• DOCSPACE_REQUEST_AUTHORIZATION_HEADER

  The flag that indicates whether the server should check for the Authorization header in incoming requests.

• DOCSPACE_REQUEST_HEADER_PREFIX

  The prefix to use with custom configuration headers.

Resources

Where to find authoritative docs and source for docspace.

• Source repository
• Website