mcpward
Production-grade gateway for MCP servers, built for solo devs and small teams.
The problem
Auth is broken
OAuth lifecycle doesn't match agent lifecycle. Clients fragment auth implementation.
No audit trail
53% of MCP servers use static API keys with zero logging.
Endpoints die silently
52% of remote MCP endpoints are dead (April 2026 analysis, 2,181 endpoints).
Quickstart
- Install:
pip install mcpward
- Configure your upstream MCP servers in
servers.yaml
- Run:
python -m mcpward — gateway live in under 10 minutes
# servers.yaml
servers:
- name: github
url: https://your-mcp-server.example.com
transport: streamable-http
What you get
- Reverse proxy with tool aggregation across multiple MCP servers
- API key auth (simple) or OAuth with transparent token refresh
- Per-tool RBAC — control which agent can call which tool
- Rate limiting and daily quotas
- Ed25519 signed audit logs (tamper-proof)
- Health checks that actually tell you when upstreams die
- x402 micropayments as alternative pricing ($0.0001/call)
Pricing
Free
$0
- 1 MCP server
- 5K calls/day
- API key auth
- Basic audit logs
Pro
$19/mo
- Unlimited servers
- OAuth + RBAC
- Signed logs (Ed25519)
- Tool aggregation
Team
$49/mo
- SSO
- Audit export
- Email support
- Everything in Pro
Or pay per call: $0.0001 via x402 micropayments (USDC). No subscription needed.