Nhost MCP. Manage Authentication, Storage, and Users in One Place
Nhost MCP manages all your backend needs—user sign-ins, profile lookups, file uploads, and session control—directly from any AI agent. Connect this MCP to instantly handle authentication flows (email/password, OTP, magic links), manage user accounts, and interact with cloud storage without leaving your development environment.
Claude 
ChatGPT 
Cursor 
Gemini 
Windsurf 
VS Code 
JetBrains 
Vercel Give Claude and any AI agent real-world access
Your agent can sign users into the system using email and password, one-time passwords (OTP), or magic links.
You can create new user accounts by providing an email and password combination, or via OTP methods.
The MCP fetches current user account details, allowing you to check statuses or retrieve specific profile data.
You can generate new access tokens using a refresh token, or securely end active user sessions across all devices.
Your agent manages file uploads to your Nhost buckets and allows you to delete files when they are no longer needed.
Ask an AI about this
Waiting for input…
What AI agents can do with Nhost MCP: 15 Tools for Backend Ops
These tools let you manage every part of your backend stack, including authentication flows, user profiles, secure file storage, and session control.
Make your AI actually useful.
Add this MCP to Claude, Cursor, or Windsurf and your AI stops guessing. It gets real tools to look things up, take action, and handle the stuff you keep doing by hand.
Start using Nhost MCPChange Email
Requests that a user's email address be updated, requiring elevated credentials.
Delete File
Permanently removes a specific file from your Nhost storage buckets.
Get File Presigned Url
Generates a temporary, secure link that allows controlled access to a private file.
Get File
Downloads the full content of an existing file, optionally applying image...
Get User
Retrieves the profile information for the user currently signed into the system.
Refresh Token
Generates a new JWT access token using an existing, valid refresh token.
Reset Password
Initiates the process of sending a password reset email to the user's registered address.
Signin Anonymous
Creates a new user session without requiring any credentials or personal information.
Signin Email Password
Authenticates a user by submitting their email address and current password.
Signin Otp Email
Starts the login process using an email-based one-time password (OTP).
Signin Passwordless Email
Initiates a secure, click-through login by sending a magic link to the user's email.
Signout
Invalidates all associated refresh tokens and ends the current user session completely.
Signup Email Password
Registers a brand new user account using an email address and chosen password.
Signup Otp Email
Creates a new user account by verifying their identity through an OTP sent to their...
Upload File
Uploads file content, whether text or base64 encoded, and returns its associated...
Security and governance baked right in.
Pick your AI client below to get set up. Just create a Vinkius account, subscribe, and you're instantly up and running. We handle the entire backend infrastructure, delivering out-of-the-box support for HTTPS Streamable, SSE, and OAuth2—zero messy routing required.
Claude AI
Open Claude Settings
Go to claude.ai, click your profile icon, then navigate to Customize → Connectors.
Add Custom Connector
Click the "+" button and select Add custom connector. Paste your Vinkius endpoint URL:
https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp
Replace [YOUR_TOKEN_HERE] with your token
from cloud.vinkius.com. For OAuth-protected servers, expand
Advanced settings to add credentials.
Start a conversation
Open a new chat. The Nhost integration is available immediately — no restart needed.
Choose How to Get Started
Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.
Build Your Own
Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.
- Import from OpenAPI, Swagger, or YAML specs
- Create Agent Skills with progressive disclosure
- Deploy to edge with MCPFusion framework
- Built in DLP, auth, and compliance on each call
- Real time usage dashboard and cost metering
- Publish to catalog or keep private
Make Your AI Do More
Start with Nhost, then connect any of our 5,200+ other servers whenever your AI needs more. One click, no limits.
- Use this MCP plus 5,200+ others, all in one place
- Add new capabilities to your AI anytime you want
- Connections are secured and governed automatically
- Track usage and costs across all your servers
- Works with Claude, ChatGPT, Cursor, and more
- New servers added to the catalog weekly
Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Nhost. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
VINKIUS CLOUD
Cloud Hosted
Managed infra
V8 Isolated
Sandboxed per request
Zero-Trust Proxy
No stored credentials
DLP Enforced
Policy on each call
GDPR Compliant
EU data residency
Token Compression
~60% cost reduction
Managing Backend Services Used To Be a Multi-Tab Headache
Think about the usual workflow: you log into your IDE to code. When an auth bug pops up, you have to open a separate browser tab to Nhost's dashboard. You check user credentials there. Then, if you need to test file upload limits, you switch yet another tab. It's constant context switching and copy-pasting of URLs.
Now, everything is in one place. Your AI agent handles the entire lifecycle—from initiating `signin_otp_email` to uploading a new image with `upload_file`. You stay focused on writing code while your agent manages the messy backend details for you.
Nhost MCP Gives You Full Control Over User Authentication
Before this, every change to a user's status—like changing their email or resetting a password—required specific API calls, managing tokens manually, and handling failure states across multiple endpoints.
Now your agent executes these actions in natural language. Need to reset credentials? Just prompt for it; the MCP handles the complexity of `reset_password` and guides you through the secure flow.
What Nhost MCP does for your AI
This connector lets you build complex applications by giving your AI client direct access to Nhost's core services. Instead of writing boilerplate API calls every time a user signs up or needs their profile checked, your agent simply uses this MCP. You can programmatically manage everything from registering new users with signup_email_password to refreshing expired tokens using the refresh_token.
Need to handle files? Your agent handles uploads via upload_file, and you can even retrieve necessary file metadata or download content through specialized tools like get_file. Because Vinkius hosts this MCP, your AI client gets all these backend capabilities in one place. This lets you test entire user journeys—like an anonymous login followed by a profile update—entirely within your development workflow.
019e38c8-3fed-7102-867a-3d2d0b2d1ba1 
How to set up Nhost MCP
The bottom line is that you get a single point of control for all your user and file backend operations without writing any low-level HTTP requests.
First, subscribe to this MCP on Vinkius and provide the necessary Nhost Auth and Storage URLs from your project dashboard.
Next, tell your AI agent what action you need. For example, 'Sign in user X with Y password' or 'Upload image Z'.
The agent executes the required tool call, interacting directly with Nhost to perform the authentication, storage, or profile management task.
Who uses Nhost MCP
This MCP is built for the full-stack developer who gets frustrated having to switch between their IDE, the terminal, and a web browser just to test an auth flow. It's essential for the DevOps engineer automating user provisioning or the support team needing quick account status checks.
You use this MCP to quickly prototype and test complete authentication flows, like signing up a new user using signup_email_password and immediately calling get_user to validate the profile data.
You automate routine tasks, such as mass user provisioning or triggering password resets by invoking reset_password without manual intervention.
When a customer reports an issue, you use the MCP to verify their account status and confirm if session tokens need refreshing via refresh_token.
Benefits of connecting Nhost MCP
Test full user journeys instantly. You can simulate a sign-in using signin_email_password, then immediately check the profile status with get_user—all without changing tabs.
Handle complex credentialing. Don't just reset passwords; your agent can initiate that process by calling reset_password and guide you through the full flow.
Simplify file handling. Whether uploading new assets via upload_file or retrieving content with get_file, all storage operations are channeled through one consistent interface.
Improve session reliability. If a user's token expires, your agent can automatically call refresh_token to extend access without disrupting the workflow.
Streamline onboarding. You can register users using multiple paths—from simple anonymous login via signin_anonymous to formal registration with signup_otp_email.
Nhost MCP use cases
The Onboarding Flow Test
A developer needs to verify that a new user sign-up works end-to-end. They prompt their agent: 'First, register user Jane Doe using email and password.' The agent uses signup_email_password, then follows up by calling get_user to confirm the profile was created correctly.
The File Management Audit
A DevOps team needs to clean up old assets. They ask their agent to list all files and delete a specific image using delete_file, followed by generating a secure, temporary link for review with get_file_presigned_url.
The Session Recovery
A support agent needs to check why a user's app suddenly logged them out. They use the MCP to call refresh_token, and if that fails, they can escalate by calling signout to confirm token invalidation.
The Data Ingestion Pipeline
A data scientist needs to upload a large configuration file. They instruct their agent to use the upload_file tool with base64 content, ensuring the file metadata is captured instantly for subsequent processing.
Nhost MCP tradeoffs
What to watch out for, and the recommended way to handle each one.
Treating it like a generic database CRUD service
Trying to use get_user just to fetch names and emails, when the tool actually provides detailed profile information tied specifically to Nhost's authentication context.
Always rely on the specific tools. If you need basic user info, use get_user. If you are onboarding a completely new account, start with signup_email_password first.
Ignoring session control
A developer signs in and then just assumes the connection is good for later testing. They fail to call signout, leaving stale tokens that might cause false-positive errors.
Always wrap up your test cycle by calling signout to invalidate refresh tokens, ensuring a clean state for the next test run.
Mixing file retrieval methods
Attempting to download a private file using a simple URL copy-paste. The connection will fail because it lacks proper authorization.
To access any protected asset, you must first call get_file_presigned_url to generate the temporary, authorized link for your agent to use.
When to use Nhost MCP
Use this MCP if your application logic relies on a unified source of truth for user identity and file storage. If managing user accounts (sign-up, sign-in, token refresh) or handling cloud assets is part of your core feature set, you need this connector. It abstracts away the complexity of Nhost's various endpoints. Don't use this if you only need to interact with a single domain—for instance, if you just need to read public data without authentication, another category tool might suffice. Also, don't rely on it for database querying; while it manages user records, specific data reads are better handled by dedicated data access tools.
Frequently asked questions about Nhost MCP
How do I start a session using Nhost MCP? +
You can start sessions in several ways. For basic testing, use signin_email_password. If you need maximum security, try signin_passwordless_email to generate a magic link.
Can I check user details with Nhost MCP? +
Yes, the get_user tool lets your agent retrieve the current authenticated user's profile information, giving you immediate access to key account data.
What if I need to delete a file using Nhost MCP? +
You use the delete_file tool. Your agent will handle the permanent removal of the specified asset from your storage bucket, making sure it's gone completely.
How does Nhost MCP help with token management? +
Token management is handled by two primary tools: refresh_token extends an expired session, and signout ensures the user is logged out everywhere.
Do I need specific credentials to use Nhost MCP? +
Yes. You must subscribe to this MCP with your Nhost Auth and Storage URLs provided by your project dashboard for it to function correctly.