Authentication & setup

Authentication & scopes

How the Linkeddit MCP server authenticates requests and what each scope grants.

Authentication methods

  • Header credentials: send X-Client-Id and X-Client-Secret (or Authorization: Bearer <client_id>:<client_secret>).
  • OAuth 2.1 connector: Claude.ai connectors use the full authorization-code + PKCE flow; no manual keys required.
Secrets are stored SHA-256 hashed and compared timing-safe. Treat your Client Secret like a password.

Scopes

Each credential carries a set of scopes. New keys are granted the full set; the legacy reddit:read scope also grants every read scope for backward compatibility.

ScopeGrants
reddit:readReddit search + subreddit discovery
leads:readLeads, pipelines, projects, stats
keywords:readKeyword autocomplete, SERP, jobs, results
compete:readCompetitive-intelligence tools (also needs the Compete plan)
content:writeGenerate content topics, DM drafts
leads:writeCreate lead pipelines

Tier & quota gating

Competitive-intelligence tools require the Compete or Enterprise plan regardless of scope. Tools that create work (create_lead_pipeline, generate_content_topics) consume your account's execution quota and are rate limited.