Which integrations are available for this server?

Provides tools for managing Cloudflare Email Routing, including provisioning email forwarding, verifying destinations, enabling routing, and managing catch-all rules for domains.

How do I use own-domain-mcp?

1. Click on "Install Server". 2. Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state. 3. In the chat, type @ followed by the MCP server name and your instructions, e.g., "@own-domain-mcp Provision email routing for myfamilydomain.com" That's it! The server will respond to your query, and you can continue using it as needed. Here is a step-by-step guide with screenshots.

own-domain-mcp

by nidamen

Overview Schema Related Servers Score Discussions

TypeScript

Remote

own-domain-mcp

One command to give a family their own-domain email — provisioned end to end on the MCP → API path, idempotently, for the whole fleet.

Every family/service account is registered under that family's own domain (service@theirdomain, owner@theirdomain). For those addresses to actually receive vendor sign-up and verification mail, the domain needs Cloudflare Email Routing: a verified destination, MX records, and a forward rule. This server does all of it via the Cloudflare REST API.

Why MCP → API (and why we keep it that way)

Direct API is the path; the browser is the last resort.

Deterministic & fast. A REST call is one round trip with a known result. Driving the Cloudflare dashboard with simulated clicks (cliclick + screenshots) is slow, brittle, and breaks on any UI change. The day this tool was born, expanding one API token's scope had to be done by clicking dashboard dropdowns because Cloudflare won't let a token widen its own scope — that pain is exactly what we never want to repeat for a repeatable task.
Least privilege. A scoped API token (Zone Email Routing Rules + DNS, Account Email Routing Addresses) can do everything here except first-time enable. No full logged-in session, no password, no 2FA in the loop.
Composable forever. Because it's an MCP wrapping the API, the agent/fleet calls it the same way every time, and it composes into the unified super-mcp.

The one honest gap

Cloudflare does not grant the first-time POST /email/routing/enable (and the /email/routing settings GET) to scoped API tokens. This tool:

tries the scoped token,
falls back to a global API key if one is configured (CLOUDFLARE_EMAIL + CLOUDFLARE_GLOBAL_API_KEY, or Keychain cloudflare-global-api-key) — keeping enable on the API path too,
otherwise reports enable: blocked with guidance and still sets the catch-all/rules, which activate the instant routing is enabled (one dashboard click, once per zone).

Everything else — destinations, catch-all, rules, status — is pure scoped-token API.

Related MCP server: MCP AWS SES Email Server

Tools

Tool	What it does
`own_domain_targets`	List eligible family domains (all zones minus the exclude policy) + the forward-to inbox. Read-only.
`own_domain_status`	Per-domain (or fleet-wide) routing state: enabled, destination verified, catch-all target, functional. Read-only.
`own_domain_destination_ensure`	Ensure the forward-to inbox is a verified account destination (creates + triggers verification). `confirm`.
`own_domain_provision`	Full idempotent setup for ONE domain: destination → enable → catch-all/addresses → status. `confirm`.
`own_domain_fanout`	The same for EVERY eligible family domain — the one fleet command. `confirm`.

Policy / safety

config/own-domains.json (env-overridable):

forwardTo — the inbox every address forwards to (e.g. you@example.com).
mode — catch_all (forward every address) or addresses (only owner@, service@).
exclude — zones never touched. Empty by default; add any zone you never want catch-all'd to a personal inbox (e.g. a medical/PHI domain, or shared infrastructure).
include — optional allowlist; when empty, all zones except exclude are eligible.

Config

npm install && npm run build
claude mcp add own-domain -- node /path/to/own-domain-mcp/dist/index.js

Credentials (env first, then macOS Keychain):

Scoped token: OWN_DOMAIN_CF_TOKEN / CLOUDFLARE_API_TOKEN, or Keychain cloudflare-api-token / cloudflare-email-routing-token (account from CLOUDFLARE_KEYCHAIN_ACCOUNT or $USER).
Optional global key (enable only): CLOUDFLARE_EMAIL + CLOUDFLARE_GLOBAL_API_KEY, or Keychain cloudflare-global-api-key.

Env overrides: OWN_DOMAIN_FORWARD_TO, OWN_DOMAIN_MODE, OWN_DOMAIN_CONFIG, OWN_DOMAIN_ACCOUNT_ID.

npm test   # unit tests (mock fetch, no live API)

This server cannot be installed

license - permissive license

quality - not tested

maintenance

How are these scores calculated?

Maintenance

–Maintainers

–Response time

–Release cycle

–Releases (12mo)

Commit activity

Resources

GitHub Repository

Need Help?

Related Servers

Unclaimed servers have limited discoverability.

Looking for Admin?

If you are the server author, to access and configure the admin panel.

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/nidamen/own-domain-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server