MCP path
Install the CLI and MCP packages with Node.js 20 or newer, then create a delegated agent profile once if one does not already exist:
Call
tinycloud_account_spaces_list first. Compare its space IDs with
tinycloud_account_applications_list, then choose a space and call
tinycloud_kv_list. Read individual keys with tinycloud_kv_get only after
their names and app context are known.
Do not treat an application name as permission to read every key in its space.
Use its manifest and any linked knowledge bundle to identify relevant prefixes
and data shapes. See Agent-readable Apps.
Two-agent approval
Use separate delegate and owner agents when the exploration tool returnsauthority_required.
- The delegate agent calls the read tool and saves the returned
tinycloud.auth.requestobject exactly asrequest.json. Do not edit its request ID, audience, host, or capabilities. - The owner agent reviews the artifact. It must contain only the account registry or selected KV read capabilities expected for this step.
- The owner agent grants that exact request with an explicit owner profile:
- The delegate agent passes the complete delegation object to
tinycloud_auth_import. - The delegate agent retries the same exploration tool. Imports persist in the selected profile, so approval and retry may happen in different MCP process sessions.
tinycloud_kv_list or tinycloud_kv_get call
needs a narrower capability that was not in the first request. Do not replace
that request with a broad space-wide grant.
Owner CLI inspection
When MCP is unavailable, the owner can inspect the same registries locally and return a read-only summary to the agent. Use an explicit owner profile, machine-readable output, and canonical live account reads:--live matters for read-only discovery. The default indexed spaces path may
refresh and register accessible spaces when its index is empty.
After selecting a space, list keys and read only the chosen key:
tc account commands derive the account registry from the active
profile. Do not run these commands with a delegate profile and assume they
target the owner’s account. Use the MCP tools and their canonical per-operation
requests for delegated exploration.
Stop conditions
Stop and return the structured result instead of widening authority when:- the owner rejects or changes the request
- a space or app is absent from the canonical account registry
- the app manifest does not explain a prefix or value shape
- a command would write, register, sync, delete, or revoke data
- the next step needs a secret value that the user did not request
