> For the complete documentation index, see [llms.txt](https://docs.umbraco.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.umbraco.com/umbraco-in-ai/17.latest/mcp/base-mcp/hosted-mcp/multi-site.md). # Multi-Site Deployments A single Cloudflare Worker can serve multiple Umbraco instances. This is useful when you have separate environments (production, staging) or multiple tenants sharing one MCP server. ## How It Works All sites share one MCP endpoint (`/`). Site selection happens during authorization. The consent screen shows a **site picker** where the user chooses which Umbraco instance to connect to. The multi-site flow adds two extra steps to the standard OAuth flow (see [Architecture - Auth Flow](/umbraco-in-ai/17.latest/mcp/base-mcp/hosted-mcp/architecture.md#auth-flow) for the full sequence): 1. The consent screen includes a **site picker** (radio buttons). The user selects which Umbraco instance to authorize against. 2. The callback URL includes the site ID (`/callback/:siteId`) so the Worker knows which site's credentials to use for token exchange. ## Setup ### 1. Configure Sites in worker.ts ```typescript const options = { name: "my-umbraco-mcp", version: "1.0.0", collections, modeRegistry: allModes, allModeNames, allSliceNames, enableConsentToolSelection: true, multiSite: { sites: [ { id: "prod", displayName: "Production", baseUrl: "https://prod.example.com", oauthClientId: "mcp-prod", oauthClientSecret: env.PROD_CLIENT_SECRET, }, { id: "staging", displayName: "Staging", baseUrl: "https://staging.example.com", oauthClientId: "mcp-staging", oauthClientSecret: env.STAGING_CLIENT_SECRET, }, ], }, }; ``` Each site needs the following fields: | Field | Required | Description | | ------------------- | -------- | ---------------------------------------------------------------------- | | `id` | Yes | URL-safe identifier (used in callback path) | | `displayName` | Yes | Shown on the consent screen and landing page | | `baseUrl` | Yes | Umbraco instance URL (browser redirects) | | `serverUrl` | No | Override for server-side calls (for example, HTTP proxy for local dev) | | `oauthClientId` | Yes | OAuth client ID registered in this Umbraco instance | | `oauthClientSecret` | No | OAuth client secret (omit for public clients) | | `toolModes` | No | Comma-separated mode override for this site | | `includeSlices` | No | Comma-separated slice include override | | `excludeSlices` | No | Comma-separated slice exclude override | | `readOnly` | No | `"true"` to force read-only for this site | ### 2. Register OAuth Clients in Each Umbraco Instance Each Umbraco instance needs the Worker registered as an `authorization_code` OAuth client. The callback URL **must include the site ID**. **Production Umbraco** (`McpOAuthComposer.cs`): ```csharp RedirectUris = { new Uri("https://my-mcp.workers.dev/callback/prod"), new Uri("http://localhost:8787/callback/prod"), // local dev }, ``` **Staging Umbraco** (`McpOAuthComposer.cs`): ```csharp RedirectUris = { new Uri("https://my-mcp.workers.dev/callback/staging"), new Uri("http://localhost:8787/callback/staging"), // local dev }, ``` See [Umbraco Setup](/umbraco-in-ai/17.latest/mcp/base-mcp/hosted-mcp/umbraco-setup.md) for the full Composer code. ### 3. Set Worker Secrets Each site's OAuth secret should be a Wrangler secret: ```bash wrangler secret put PROD_CLIENT_SECRET wrangler secret put STAGING_CLIENT_SECRET ``` Reference them in your `worker.ts` via `env.PROD_CLIENT_SECRET`, and so on. ### 4. OAuthProvider Wiring No changes to the OAuthProvider configuration are needed. The `apiRoute` and `authorizeEndpoint` stay the same as a single-site setup. ## Routes | Route | Description | | ------------------- | ---------------------------------------------------------------------- | | `/` | MCP endpoint (shared by all sites). Browser visits show site listing. | | `/authorize` | Consent screen with site picker. | | `/callback/:siteId` | OAuth callback (`siteId` matches Umbraco's registered `redirect_uri`). | ## Per-Site Tool Filtering Each site can override tool filtering independently. These overrides are applied on top of the base env config: ```typescript { id: "staging", displayName: "Staging", baseUrl: "https://staging.example.com", oauthClientId: "mcp-staging", toolModes: "content", // Only content tools on staging readOnly: "true", // Read-only on staging } ``` The filtering tiers stack: 1. **Admin** (env vars) sets the maximum boundary. 2. **Site** (`SiteConfig` overrides) replaces base values where specified. 3. **User** (consent choices) further narrows via intersection. A staging site configured as read-only stays read-only even if the user does not check the read-only toggle on the consent screen. ## Security * Each site has its own OAuth client credentials. A compromise of one site's credentials does not affect others. * Site IDs in callback paths are validated against the configured site list. Unknown IDs return 404. * Site credentials are stored in KV state (encrypted at rest, 10-minute TTL, single-use). They are not stored in cookies or URL params. * Site selection is explicit on the consent screen. This prevents confused deputy attacks across sites. * Per-site tool filter overrides can further restrict (but not expand) the base admin config. ## Local Development For local dev with multiple sites, each Umbraco instance needs `http://localhost:8787/callback/:siteId` registered as a `redirect_uri`. If using self-signed certs, set `serverUrl` per site: ```typescript { id: "local-prod", displayName: "Local Production", baseUrl: "https://localhost:44391", serverUrl: "http://localhost:44380", // HTTP proxy oauthClientId: "mcp-local", oauthClientSecret: env.LOCAL_CLIENT_SECRET, } ``` ## Single Site (No Multi-Site) If you do not configure `multiSite`, the Worker operates in single-site mode: * No site picker on the consent screen. * Uses `UMBRACO_BASE_URL` and `UMBRACO_OAUTH_CLIENT_ID` from env. * The callback URL is `/callback` (no `siteId` suffix). * The landing page shows the single Umbraco instance. This is the default and requires no changes from the basic setup. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.umbraco.com/umbraco-in-ai/17.latest/mcp/base-mcp/hosted-mcp/multi-site.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.