Skip to content
capsol capsol

Dashboard

$ dashboard · 4 min read · updated 2026-05-05

The dashboard is the primary surface for capsol. It is served by the registry at /.

Sign in

Section titled “Sign in”

Open the registry URL, usually http://localhost:4000, and paste the admin key. The key is printed on first run and stored at ~/.capsol/admin.key when generated by capsol.

The login endpoint sets an httpOnly capsol_admin cookie. The plaintext admin key is not stored in browser JavaScript.

Create Capsules

Section titled “Create Capsules”

Before any capsule exists, the dashboard shows one call to action: Create capsule.

The create form has two fields:

FieldPurpose
NameHuman-readable capsule name.
DescriptionOptional note for the capsule list.

After create, the detail page shows the stable capsule MCP URL, configured URI scheme sections, pending grants, approved client connections, signals, and capsule-local settings.

Add Entries

Section titled “Add Entries”

Entries are addressed by URI:

docs://architecture
runbooks://deploy
skills://review-pr

Built-in schemes are shown by default. Capsule-specific schemes can be added directly on the capsule detail page and are fetched from GET /v1/capsules/:id/schemes.

skills:// is the built-in prompt source: those entries also appear in MCP prompts/list. Custom schemes can opt into prompt behavior with "prompt_source": true.

MCP URL

Section titled “MCP URL”

Capsule detail shows URLs like:

http://localhost:4000/mcp/<capsule-id>

Use the tabbed client instructions to paste the URL into Claude Desktop, Claude Code, Cursor, Windsurf, ChatGPT, or another Streamable HTTP MCP client. The URL is not secret. OAuth discovery/DCR is the default authentication path; autonomous agents can request enrollment and wait for human approval.

Create scoped access from the OAuth authorization review page when a client should only see specific schemes or individual entries. The Access tab shows the stable Setup URL, pending grants, approved OAuth/enrollment connections, access profiles, and recent signals. Seeded default role credentials are no longer shown as client connections.

Current Sections

Section titled “Current Sections”
SectionStatus
CapsulesLive. Create, open, add entries, copy MCP URLs.
GrantsPending OAuth and enrollment approvals, approved/denied/expired/cancelled grant history, registered OAuth clients, filters, approve, review, deny, expire, and revoke actions.
ActivityLive audit/activity view with request sizes.
ClientsActive MCP clients from the SSE stream.
ConnectionsMCP connection identities, roles, scoped permissions, test, rotate, pause, and revoke.
SettingsHosted URLs, OAuth client policy (DCR/CIMD), approval policy ceilings, rate-limit toggle, hosted OIDC login, enrollment email with test send, manual bearer break-glass, and host/display information.
DocsOpens the docs site in a new tab.

Reference

Section titled “Reference”
  • Source: registry/dashboard.html, registry/dashboard.css, registry/dashboard.js.
  • Auth: POST /api/auth.
  • Schemes: GET /v1/schemes, GET /v1/capsules/:id/schemes.
  • Activity: GET /api/agents/stream.