How do I revoke API or MCP access?
Security · Updated Jun 22, 2026
Use Workspace API settings to revoke workspace tokens and OAuth connections. Revocation takes effect immediately.
Open Dashboard, Settings, Workspace, API. Revoke workspace tokens from the token list. Revoke OAuth MCP connections from the Connections section. See API authentication and the MCP overview for how those access paths differ.
Canopy checks token and grant status on each request, so revoked access stops immediately for REST and MCP traffic.
Related articles
How does MCP access work?
AutomationCanopy exposes a read-only remote MCP server so agents can query maps, services, spend, and dependencies.
Why won't my MCP client connect?
AutomationCheck whether your client supports remote MCP, confirm the server URL, then choose OAuth or token auth based on the client.
How do share links and public maps work?
SecurityMaps are private by default. Public profiles, marketplace listings, and share links are opt-in.