Skip to main content
The built-in Model Context Protocol server lets a compatible AI client invoke Presenton presentation workflows. MCP is available in the self-hosted web deployment at /mcp; it is disabled in the Electron desktop app.

Before you start

  • Run Presenton with Docker, Compose, or another web deployment.
  • Confirm browser generation works.
  • Configure the admin account for any shared or remote instance.
  • Confirm your client supports a remote HTTP MCP server and custom headers.

1. Start an authenticated instance

Open http://localhost:5001, sign in, and create a small test presentation before continuing.

2. Request a bearer token

The response includes access_token and token_type. Copy the token without the surrounding JSON quotes and keep it private.
The MCP token represents an authenticated Presenton session. Do not commit it to a repository, paste it into support tickets, or expose it in screenshots.

3. Configure the MCP client

Configuration formats vary by client. The following examples use the structure from the Presenton README; adapt the outer file location and environment-variable syntax to your client.

Example A: local authenticated server

Example B: remote HTTPS server

Use HTTPS for any connection that leaves the local machine. The reverse proxy must forward the Authorization header and support the connection behavior required by your MCP client.

Example C: local server without configured auth

For an isolated development instance where authentication has not been configured, omit the header:
Do not use an unauthenticated configuration on a publicly reachable instance.

Example D: development and production instances

Give each instance a clear name so users know where uploaded documents and generated presentations will be stored.

4. Restart and verify the client

1

Reload MCP configuration

Restart the client or use its MCP reload action so it reads the new server entry.
2

Check discovery

Confirm the client reports the Presenton server as connected and displays its available presentation tools.
3

Run a small request

Ask the client to create a short two-slide presentation about a harmless test topic.
4

Review in Presenton

Open the returned edit URL, inspect the slides, and confirm the presentation appears in the correct instance.

Token rotation and recovery

Setting AUTH_OVERRIDE_FROM_ENV=true rotates the session signing secret. Existing browser sessions and MCP bearer tokens stop working, so request a new token and update every client afterward. If a client starts returning unauthorized errors:
  1. Confirm the Presenton URL and /mcp path.
  2. Sign in to verify the admin credentials still work.
  3. Request a new token from /api/v1/auth/login.
  4. Replace the old bearer token in the client configuration.
  5. Restart or reload the client.

Secure a remote MCP deployment

  • Use HTTPS and a trusted certificate.
  • Keep Presenton authentication enabled.
  • Restrict network access to expected users and clients.
  • Store tokens in the client’s secret store when supported.
  • Rotate credentials and tokens after suspected exposure.
  • Protect /app_data, because MCP-created presentations and uploads are stored there.
  • Review generated presentations before publishing or exporting them.
Confirm that it supports remote HTTP MCP, that the URL ends in /mcp, and that configuration was reloaded. The desktop app does not expose MCP.
Request a fresh bearer token with the current admin credentials and confirm the header is exactly Authorization: Bearer YOUR_ACCESS_TOKEN.
Verify HTTPS routing to container port 80, forwarding of the Authorization header, and the proxy’s timeout or buffering behavior for remote MCP connections.
Credential override rotates the signing secret and invalidates tokens. Sign in again and update the MCP client with the new token.
The MCP client discovers Presenton’s tools, creates a test presentation, and returns a result that opens in the intended self-hosted instance.