Connecting Claude & AI Tools

Updated 11 July 2026

Set up secure OAuth sign-in so Claude, Cursor, and other MCP clients connect without manually copying long tokens.

Overview

Some AI tools – especially Claude.ai – support OAuth, a standard way to sign in through your browser instead of pasting a secret token. Odoo MCP Connection includes built-in OAuth support so your team can authorize access safely.

Each OAuth client is linked to an API key and an Odoo user. When someone completes sign-in in Claude, they get access with the same permissions as that key.

You can create OAuth clients from Odoo MCP Connection → OAuth Clients or directly from an API key using Create OAuth Client.

How It Works

For Claude specifically, you must add this redirect address: https://claude.ai/api/mcp/auth_callback

Your Odoo site must use HTTPS in production for OAuth to work with Claude.

Step-by-Step Guide

Option A – From an existing API key
Option B – New OAuth client from scratch

Fields Table

Field Explanations

Name

Helps you identify this OAuth setup in lists. Include the AI product and team name.

Active

Disable to prevent new authorizations without deleting the client record.

Client ID

Safe to share with the AI tool configuration. It is not secret on its own but must pair with the Client Secret.

Client Secret

Treat like a password. Only enter it in trusted AI tool settings. Use Generate Secret to create a new one if compromised.

Redirect URIs

Tells Odoo which websites may receive users after login. Claude requires its specific callback URL. Add one URI per line.

Odoo User

Determines what data and actions are available after OAuth sign-in – same as for a regular API key.

Linked API Key

Created automatically behind the scenes. MCP requests after OAuth use this key’s permissions and appear in its audit logs.

Scope

Defines the access scope. The default mcp value is correct for standard MCP connections.

OAuth Token URL & Authorize URL

Technical addresses shown on the linked API key. Advanced setups may need these; most users only need Client ID, Secret, and MCP endpoint.

Tips

Common Mistakes