MCP setup
Connect your agent to visitor evidence.
Use the hosted remote MCP endpoint with OAuth, or run the local stdio package with an API key. Either path gives approved AI clients read-only access to sessions, funnels, anomalies, campaigns, errors, and friction signals.

Hosted remote MCP
| Field | Value |
|---|---|
| Endpoint | https://krystalview.com/mcp |
| Transport | streamable-http |
| Protocol | 2025-06-18 |
| OAuth metadata | https://krystalview.com/.well-known/oauth-authorization-server |
| Protected resource metadata | https://krystalview.com/.well-known/oauth-protected-resource |
Remote clients should use OAuth authorization code with PKCE. During consent, the signed-in user chooses one KrystalView site. Tokens are read-only and site-scoped. The OAuth server supports refresh-token rotation and token revocation.
Local stdio package
pip install krystalview-mcp export KRYSTALVIEW_API_KEY="kv_live_..." krystalview-mcp
API-key fallback
Clients that support custom headers can call the hosted endpoint with a KrystalView read API key as Authorization: Bearer kv_live_... or X-API-Key: kv_live_....
| Variable | Use |
|---|---|
| KRYSTALVIEW_API_KEY | Required for the local stdio package. |
| KRYSTALVIEW_BASE_URL | Optional API base URL. Defaults to KrystalView production. |
Gemini and Antigravity
KrystalView also publishes a Gemini CLI extension package for Google agent workflows and the Antigravity transition. The extension installs the same read-only MCP server through the public PyPI package.
Install from GitHub
gemini extensions install https://github.com/KrystalView/krystalview-gemini-extension --ref v0.1.6 gemini extensions config krystalview
Set KRYSTALVIEW_API_KEY to a site-scoped read-only API key when prompted.
Available tools
Sessions
Search visitor sessions by device, geography, friction, rage clicks, duration, and page path. Drill into a session timeline when needed.
Stats and anomalies
Query site stats, live visitors, scroll depth, traffic changes, friction shifts, browser errors, and anomaly explanations.
Funnels and campaigns
List funnels, analyze step drop-off, inspect UTM campaigns, campaign sessions, and ROAS when ad data is connected.
Security and review notes
| Area | Behavior |
|---|---|
| Tool permissions | All MCP tools are read-only and return analytics evidence only for the selected site. |
| OAuth | Authorization code + PKCE, dynamic client registration, resource parameter support, refresh-token rotation, and revocation endpoint. |
| CORS and Origin | MCP and OAuth browser requests are checked against explicit trusted origins. Non-browser clients can connect without an Origin header. |
| Privacy | See Privacy and Terms. Users can revoke API keys in the console and OAuth tokens through compatible clients. |
Example prompts
How is my site performing this week? Show me frustrated mobile visitors from the last 24 hours. Where are users dropping off in the checkout funnel? Find sessions with rage clicks on the pricing page. Which campaigns are driving high-friction sessions? Show unresolved browser errors with sample session evidence.