WindsurfIDE

SuperTokens MCP Server

Bring Authentication
to Windsurf

Name: SuperTokens MCP Server
Price: 29 USD
Availability: InStock
Rating: 4.9 (1 reviews)
Author: Vinkius

Learn how to connect SuperTokens to Windsurf and start using 18 AI agent tools in minutes. Fully managed, enterprise secure, and ready to use without writing a single line of code.

GDPR Free for Subscribers

Assign Role To UserBulk Import UsersCreate Or Update RoleCreate Or Update TenantCreate SessionDelete User MetadataGet TenantGet UserGet User MetadataLink AccountsList RolesList User RolesRefresh SessionRemove SessionSignin UserSignup UserUnlink AccountsUpdate User Metadata

Unlock for AI Agents

Ask AI about this MCP Server ChatGPT Claude Perplexity

Compatible with every major AI agent and IDE

Claude

ChatGPT

Cursor

Gemini

Windsurf

VS Code

JetBrains

Vercel

+ other MCP clients

What is the SuperTokens MCP Server?

Connect your SuperTokens Core instance to any AI agent to manage user lifecycles, session security, and Role-Based Access Control (RBAC) through natural language.

What you can do

User Management — Sign up new users, sign in existing ones, and retrieve detailed user profiles or link multiple accounts together.
Session Control — Create, refresh, and revoke sessions (JWT or database-backed) to maintain tight security over user access.
RBAC & Permissions — Create roles, define permissions, and assign them to users to manage authorization levels dynamically.
User Metadata — Store and update custom JSON metadata for users to track preferences or application-specific data.
Account Linking — Seamlessly link or unlink different recipe user IDs to a primary user identity.

How it works

Subscribe to this server
Enter your SuperTokens Core URL and API Key
Start managing your authentication layer from Claude, Cursor, or any MCP-compatible client

Who is this for?

Backend Developers — quickly debug user sessions or update roles without writing manual scripts or using a CLI.
Support Teams — inspect user metadata and account status to resolve login issues or permission errors instantly.
Security Engineers — audit roles and revoke suspicious sessions directly through a conversational interface.

Built-in capabilities (18)

assign_role_to_user

Assign a role to a user

bulk_import_users

Bulk import users

create_or_update_role

Create or update a user role

create_or_update_tenant

Create or update a tenant

create_session

Create a new session for a user

delete_user_metadata

Delete metadata for a user

get_tenant

Get tenant details

get_user

Get user details by ID

get_user_metadata

Get metadata for a user

link_accounts

Link two user accounts together

list_roles

List all roles

list_user_roles

List roles assigned to a user

refresh_session

Refresh an existing session

remove_session

Remove/revoke a session

signin_user

signup_user

unlink_accounts

Unlink a user account

update_user_metadata

Update metadata for a user

Why Windsurf?

Windsurf's Cascade agent chains multiple SuperTokens tool calls autonomously. query data, analyze results, and generate code in a single agentic session. Paste Vinkius Edge URL, reload, and all 18 tools are immediately available. Real-time tool feedback appears inline, so you see API responses directly in your editor.

—
Windsurf's Cascade agent autonomously chains multiple tool calls in sequence, solving complex multi-step tasks without manual intervention
—
Purpose-built for agentic workflows. Cascade understands context across your entire codebase and integrates MCP tools natively
—
JSON-based configuration means zero code changes: paste a URL, reload, and all 18 tools are immediately available
—
Real-time tool feedback is displayed inline, so you see API responses directly in your editor without switching contexts

See it in action

SuperTokens in Windsurf

AI Agent→Vinkius

High Security·Kill Switch·Plug and Play

Why Vinkius

SuperTokens and 4,000+ other MCP servers. One platform. One governance layer.

Teams that connect SuperTokens to Windsurf through Vinkius don't need to source, host, or maintain individual MCP servers. Every tool call runs inside a hardened runtime with credential isolation, DLP, and a signed audit chain.

4,000+MCP Servers ready

<40msCold start

60%Token savings

	Raw MCP	Vinkius
Server catalog	Find and host yourself	4,000+ managed
Infrastructure	Self-hosted	Sandboxed V8 isolates
Credential handling	Plaintext in config	Vault + runtime injection
Data loss prevention	None	Configurable DLP policies
Kill switch	None	Global instant shutdown
Financial circuit breakers	None	Per-server limits + alerts
Audit trail	None	Ed25519 signed logs
SIEM log streaming	None	Splunk, Datadog, Webhook
Honeytokens	None	Canary alerts on leak
Custom domains	Not applicable	DNS challenge verified
GDPR compliance	Manual effort	Automated purge + export

Unlock for AI Agents View step-by-step setup guide for Windsurf →

Enterprise Security

Why teams choose Vinkius for SuperTokens in Windsurf

The SuperTokens MCP Server runs on Vinkius-managed infrastructure inside AWS — a purpose-built runtime with per-request V8 isolates, Ed25519 signed audit chains, and sub-40ms cold starts. All 18 tools execute in hardened sandboxes optimized for native MCP execution.

Your AI agents in Windsurf only access the data you authorize, with DLP that blocks sensitive information from ever reaching the model, kill switch for instant shutdown, and up to 60% token savings. Enterprise-grade infrastructure, zero maintenance.

Unlock for AI Agents View full SuperTokens details →

Fully ManagedVinkius Servers

60%Token savings

High SecurityEnterprise-grade

IAMAccess control

EU AI ActCompliant

DLPData protection

V8 IsolateSandboxed

Ed25519Audit chain

<40msKill switch

Stream every event to Splunk, Datadog, or your own webhook in real-time

* Every MCP server runs on Vinkius-managed infrastructure inside AWS - a purpose-built runtime with per-request V8 isolates, Ed25519 signed audit chains, and sub-40ms cold starts optimized for native MCP execution. See our infrastructure

The Vinkius Advantage

How Vinkius secures
SuperTokens for Windsurf

Every tool call from Windsurf to the SuperTokens MCP Server is protected by DLP redaction, cryptographic audit chains, V8 sandbox isolation, kill switch, and financial circuit breakers.

< 40msCold start

Ed25519Signed audit chain

60%Token savings

FAQ

Frequently asked questions

Can I retrieve specific user information using their ID?

Yes, by using the get_user tool with the specific User ID, you can fetch the full profile, including email and account linking status.

How do I assign a specific role like 'admin' to a user?

You can use the assign_role_to_user tool. Just provide the User ID and the role name to update their permissions immediately.

Is it possible to update custom user data or preferences?

Absolutely. The update_user_metadata tool allows you to pass a JSON object to store or update custom information for any user.

How does Windsurf discover MCP tools?

Windsurf reads the mcp_config.json file on startup and connects to each configured server via Streamable HTTP. Tools are listed in the MCP panel and available to Cascade automatically.

Can Cascade chain multiple MCP tool calls?

Yes. Cascade is an agentic system. it can plan and execute multi-step workflows, calling several tools in sequence to accomplish complex tasks without manual prompting between steps.

Does Windsurf support multiple MCP servers?

Yes. Add as many servers as needed in mcp_config.json. Each server's tools appear in the MCP panel and Cascade can use tools from different servers in a single flow.