Skip to main content

Overview

OAuth clients provide secure authentication for MCP and third-party integrations. They use client credentials (Client ID and Client Secret) to authenticate with Blnk Cloud APIs. You can manage your OAuth clients in Settings > API Keys.

How OAuth works

OAuth clients use the OAuth 2.0 client credentials flow for server-to-server authentication. Each client has a Client ID and Client Secret that are used together to authenticate API requests. Each OAuth client has:
  • Name: A user-friendly identifier to help you organize and identify clients
  • Client ID: A public identifier for your OAuth client
  • Client Secret: A secret credential used for authentication (shown only once at creation)
  • Scopes: Permissions that define what the client can access (e.g., * for all permissions, or specific scopes like mcp:read, mcp:write)
  • Expiration: Optional expiration date, or “Never” for clients that don’t expire

Create an OAuth client

1

Navigate to API Keys

  1. Go to Settings > API Keys in your Blnk Cloud dashboard.
  2. Click Create API Key button in the top-right corner of the API Keys page.
2

Configure your OAuth client

Fill in the required information:
  1. Name: Enter a descriptive name for your OAuth client (e.g., “Production OAuth Client”, “MCP Integration”)
  2. Type: Select OAuth (instead of API Key)
  3. Scopes: Select the permissions for this client:
    • * for all permissions
    • Specific scopes like mcp:read, mcp:write for limited access
  4. Expires: Choose when the client should expire:
    • Select a specific date
    • Choose “Never” for clients that don’t expire
3

Save your OAuth credentials

After creating the client, your Client ID and Client Secret will be displayed only once. Copy both immediately and store them securely.OAuth credentials panel showing Client ID, Client Secret, and warning to store credentials securely
You cannot retrieve the Client Secret after creation. If you lose the secret, you must create a new OAuth client.

Revoke an OAuth client

If you need to disable an OAuth client without deleting it permanently, you can revoke it. Revoked clients cannot be used for authentication but remain visible in your API Keys list for reference.
1

Open OAuth client details

Click on the OAuth client name in the API Keys table to view its details.
2

Revoke the client

In the client details panel, click the Revoke Key button.
Revoking a client will immediately disable it. Any applications or integrations using this client will stop working until you create and configure a new client.
3

Confirm revocation

Confirm that you want to revoke the client. The client’s status will change to “Revoked” in the API Keys table.

Need help?

If you’re having trouble with Blnk Cloud, don’t hesitate to send us a message via email at [email protected] or send us a message here.