INTEGRATIONGuide

Connect an AI client to Movitera MCP

Use Movitera MCP to query your workspace from an external AI client without copying credentials or granting more access than your account already has.

Before you start

An active Movitera® account and access to the team you want to query.
A client that supports remote MCP servers, such as Claude, Cursor, ChatGPT, or another compatible client.
A recent second-factor confirmation. Movitera asks for this verification before approving the connection.
The Movitera MCP URL. It ends in /mcp.

Connect by URL

1
In the AI client, add a remote MCP server.
When the client asks for the server URL, paste the Movitera MCP URL.
2
Sign in to Movitera when the browser opens.
Authorization happens in the browser. Sign in normally and complete the security check when prompted.
3
Choose the team and approve the connection.
The authorization screen shows which client is requesting access. Review it before approving. The connection is limited to the team you choose; to query another team, add another connection and approve it for that team.

Return to the AI client.

result

The client can now query the Movitera areas your account can access.

Understand the authorization screen

The authorization screen shows who is requesting access, what the connection will be able to do, and which team it will see. Check each item before choosing Permitir (Allow) or Recusar (Deny).

Screen item	What it means
`Destino` (Destination)	The address that receives access when you approve. Confirm it matches the client you are connecting.
`Este aplicativo poderá` (This app will be able to)	What the connection can do. `Ler seus dados da Movitera` (Read your Movitera data) covers what your account can already see. `Fazer alterações, com sua confirmação a cada vez` (Make changes, with your confirmation each time) only appears when the workspace enables write actions.
`Time` (Team)	The team whose data the connection sees. The list shows only teams where you are an active member. To query another team, create another connection.
`Nome da conexão (opcional)` (Connection name, optional)	The name that identifies this connection in Access tokens. If you leave it empty, Movitera uses `MCP ·` followed by the client name. Use a name that identifies the device, such as `Claude no meu notebook` (Claude on my laptop).
`Esta solicitação expira em` (This request expires in)	Countdown for the approval window, about 10 minutes. When it reaches zero, the screen shows `Esta solicitação expirou` (This request has expired); start the connection again from the client.

Unidentified app

When the client does not identify itself, the screen shows Conectar um aplicativo à Movitera (Connect an app to Movitera) and the warning Não foi possível confirmar o nome deste aplicativo. Continue apenas se você mesmo iniciou esta conexão. (We could not confirm this app's name. Continue only if you started this connection yourself.) Approve only if you just started the connection in that client; when in doubt, choose Recusar (Deny).

What to ask the client

Ask for a Wiki runbook or policy before answering from general knowledge.
Ask it to summarize Closure tickets, Forge issues, today's tasks, supplier contracts, or assets assigned to you.
Use date, status, owner, supplier, or category filters when you want a smaller list.
If your workspace enables write actions, the client asks you to confirm before each change. Many workspaces run MCP read-only, with no tools that can modify data.

Shortcuts

Some MCP clients also show resources for attaching tickets, Wiki pages, or issues as context, and prompts such as /triage-ticket, /draft-release-notes, /weekly-supplier-review, and /onboard-asset.

Areas the client can query

Area	Example uses
Wiki	Find pages, runbooks, policies, and team documentation.
Closure	Query tickets, conversations, categories, and open requests.
Forge	Query issues, initiatives, and engineering work.
Tasks	List today's tasks, activities, and categories.
SRM	Query suppliers, contracts, invoices, and expiration dates.
Inventory	Query assets, assigned equipment, and warranties expiring soon.
Users	Find people in the workspace when a question depends on an owner, requester, or team member.

Vault stays outside MCP

Vault credentials, passwords, tokens, and keys are not exposed through MCP. To view a secret, open the credential in Vault.

Write better questions

Name the area the client should query: Wiki, Closure, Forge, Tasks, SRM, or Inventory.
Include filters you would use in Movitera, such as period, status, supplier, owner, or category.
Ask the client to cite the records it used when you need to verify the source.
For team processes, ask it to search Wiki first and then summarize the result.

How access stays limited

Every tool revalidates your user and module permissions before returning data.
Without Forge access, for example, Forge tools do not return issues or initiatives.
Many workspaces run MCP read-only; in those workspaces, no tool can modify data.
When write actions are enabled, every change requires explicit confirmation in the client.
Vault queries do not reveal passwords, tokens, or keys.

Manage or revoke access

Approving creates an access token for that client and team, with the name you set in Nome da conexão (opcional) (Connection name, optional). It is valid for about 90 days.
You can see and revoke that token in Configurações (Settings) → Tokens de acesso do cofre (Vault access tokens). See Access tokens.
Revoking disconnects the client immediately. To use it again, connect and approve it again.

If it does not work

The URL is not accepted: confirm that you pasted the Movitera MCP URL. It ends in /mcp.
No tools appear: confirm that the client supports remote MCP servers and reconnect the integration.
A tool cannot find data: confirm your module access in Movitera and try a more specific search.
You cannot approve: sign in to Movitera again, complete the second-factor confirmation, and select an active team.
Esta solicitação expirou (This request has expired): the approval window of about 10 minutes ended before you chose Permitir (Allow). Start the connection again from the client; the screen opens with a new countdown.
Esta solicitação já foi processada (This request has already been processed): the link was already approved or denied, usually from an old tab. If you need a new connection, start again from the client.
Link de autorização inválido (Invalid authorization link): the link you opened is incomplete or no longer points to a valid request. Start the connection again from the client to get a new link.
Você não é membro ativo deste time. Selecione outro time e tente novamente. (You are not an active member of this team. Select another team and try again.): your membership in the chosen team is inactive. Pick another team in the Time (Team) field or ask the team admin to reactivate your access.
Autenticação de dois fatores cancelada. Tente novamente. (Two-factor authentication cancelled. Try again.): the security confirmation was closed before it finished. Choose Permitir (Allow) again and complete the check.