Portkey's resource offers insights, tutorials, and resources for web developers and designers. Readers can learn about frontend development, user experience design, and web development tools. With articles, tutorials, and design showcases, Portkey provides  guidance and expertise for creating modern and responsive web applications.

portkey

MCP servers expose tools, resources, and prompts to AI agents via a flat discovery list with no native scoping. In shared production environments, this creates over-permissioned agents, credential sprawl, and missing audit trails. The post outlines a two-level provisioning model: organization-level controls set the ceiling (blocking dangerous tools org-wide), while workspace-level controls scope access per team. Credentials should live at a centralized gateway layer rather than inside agent code, enabling instant revocation. Runtime governance adds policy checks, rate limits, and structured audit logs at invocation time. Portkey's MCP gateway is presented as an implementation of this centralized model.

Tool Provisioning in MCP Servers: Controlling AI Agent Access in Production

What MCP servers actually expose to agents

Why unrestricted tool access breaks in production

The two levels of tool provisioning in MCP servers

Credential management and authentication at the tool layer

Policy enforcement, rate limits, and auditability across tool invocations

How Portkey's MCP gateway handles tool provisioning at scale