Notion MCP

Live

OAUTH 2.0

PRODUCTIVITY

Productivity

Connect to Notion MCP. Create and update pages, databases, comments, and views from your AI workflows.

  • Acts as the user: Every tool call runs as the authorizing user. Access and audit trail stay intact.
  • Credentials stay vaulted: AES-256 encrypted, resolved at request time, never stored in LLM context.
  • Scoped before every call: Per-user permissions enforced automatically. 90-day audit trail included.
Notion MCP
agent · Acme Q3
Run
Notion-Create-Comment in Notion MCP
S
notionmcp_notion-create-comment
85ms
Notion MCP agent
Add a comment to a notion page or inline discussion thread..
Sources: Notion MCP
notionmcpmcp
1 tool call
18:29
Message Claude...

Notion MCP tools for AI agents

CALL ANY TOOL
12 tools covering notion-create-pages, notion-create-database, notion-create-comment.
notionmcp_notion-create-comment
Add a comment to a notion page or inline discussion thread.
Add a comment to a notion page or inline discussion thread.
Parameters
Name
Type
Required
Description
page_id
string
Required
The ID of the page to comment on (with or without dashes).
discussion_id
string
Optional
The ID or URL of an existing discussion to reply to (e.g., discussion://pageId/blockId/discussionId).
markdown
string
Optional
The content of the comment as a Markdown string. Provide exactly one of markdown or rich_text. For exact syntax, read the MCP resource notion://docs/enhanced-markdown-spec through your MCP client's resource-reading interface. Do not pass this URI to the Notion fetch tool or any URL-fetching tool, and use only the Rich text types and Mentions syntax that comments support. Comments support inline formatting (bold, italic, strikethrough, underline, code, links), inline math using $`Equation`$, and user/page/database/date mention tags such as . Do not use UI shortcuts like @today, @name, [[page]], or autocomplete-style emoji syntax; those are editor affordances, not markdown syntax. Mention tags must include a real url where required by the spec. Block-level Markdown such as fenced code blocks, headings, lists, tables, and blockquotes is stored as plain comment text rather than rendered as blocks.
rich_text
array
Optional
An array of rich text objects that represent the content of the comment. Provide exactly one of rich_text or markdown.
selection_with_ellipsis
string
Optional
Unique start and end snippet of the content to comment on. DO NOT provide the entire string. Instead, provide up to the first ~10 characters, an ellipsis, and then up to the last ~10 characters. Make sure you provide enough of the start and end snippet to uniquely identify the content. For example: "# Section heading...last paragraph."
notionmcp_notion-create-database
Create a new notion database using a sql ddl schema definiti
notionmcp_notion-create-pages
Create one or more notion pages with properties and markdown
notionmcp_notion-create-view
Create a new view on a notion database with optional filters
notionmcp_notion-duplicate-page
Duplicate an existing notion page within the current workspa
notionmcp_notion-fetch
Retrieve details about a notion page, database, or data sour
notionmcp_notion-get-comments
Retrieve comments and discussion threads from a notion page.
notionmcp_notion-get-teams
Retrieve a list of teams (teamspaces) in the current workspa
notionmcp_notion-get-users
Retrieve a list of users in the current notion workspace.
notionmcp_notion-move-pages
Move one or more notion pages or databases to a new parent.
notionmcp_notion-query-data-sources
Query notion databases using sql or by specifying a view.
notionmcp_notion-query-database-view
Query paginated results from a notion database view by its u
Build your Agent
Same auth pattern across every framework.
Python · LlamaIndex
from langchain_mcp_adapters.client import MultiServerMCPClient
from scalekit import ScalekitClient

client = ScalekitClient(env_url=ENV_URL, client_id=CLIENT_ID, client_secret=SECRET)
token = client.agent.get_token(user_id="user_id", connector="notionmcp")

mcp = MultiServerMCPClient({
"notionmcp": {
"url": "https://mcp.scalekit.com/notionmcp",
"headers": {"Authorization": "Bearer " + token}
}
})
tools = await mcp.get_tools()
import OpenAI from "openai";
import { ScalekitClient } from "@scalekit-sdk/node";

const client = new ScalekitClient({ envUrl, clientId, clientSecret });
const token = await client.agent.getToken({ userId: "user_id", connector: "notionmcp" });

const openai = new OpenAI();
// Connect to MCP at https://mcp.scalekit.com/notionmcp
// Pass: Authorization: Bearer + token
import Anthropic from "@anthropic-ai/sdk";
import { ScalekitClient } from "@scalekit-sdk/node";

const client = new ScalekitClient({ envUrl, clientId, clientSecret });
const token = await client.agent.getToken({ userId: "user_id", connector: "notionmcp" });

const anthropic = new Anthropic();
// Connect to MCP at https://mcp.scalekit.com/notionmcp
// Pass: Authorization: Bearer + token
from google.adk.agents import LlmAgent
from scalekit import ScalekitClient

client = ScalekitClient(env_url=ENV_URL, client_id=CLIENT_ID, client_secret=SECRET)
token = client.agent.get_token(user_id="user_id", connector="notionmcp")
# Connect to MCP at https://mcp.scalekit.com/notionmcp
# Pass: Authorization: Bearer + token
Try these prompts
Paste any prompt into your agent to get started.
Get started
Copy the prompt
Copied
Update a Notion database view’s name, filters, sorts, or display configuration?
Copy the prompt
Copied
Update a Notion page’s properties, content, icon, cover, or verification status?
Advanced
Copy the prompt
Copied
Update a Notion data source’s schema, title, or attributes using SQL DDL statements?
Copy the prompt
Copied
Search pages, databases, and connected sources in the Notion workspace?
SEE HOW AUTH WORKS
User authorises once. Every agent call after uses their token with scope enforcement.
1
Authorize
Your user connects
Notion MCP
once. We tie it to their identity and the meetings they approved — no shared bot account, no org-wide access
Who:
user ‘A’
when:
Once per user
access:
Limited to user
2
Store
Their
Notion MCP
token lives in a vault scoped to them. User A's meetings are never reachable by an agent acting for user B, even on the same connection
vault:
encrypted
scope:
per-user
tokens:
auto-refreshed
3
Resolve
When your agent calls a
Notion MCP
tool, we fetch the right token server-side. It never touches your agent, never appears in the LLM context, never shows up in your logs
speed:
~40ms
check:
before every call
seen by:
nobody
4
Audit
Every
Notion MCP
tool call is logged — who triggered it, which meeting was fetched, what came back. 90 days of history, tied to the user who authorized it
history:
90 days
export:
SIEM-ready
logged:
every call
Test other agents
See the same per-user auth pattern across other connectors.
OPS
Email-to-calendar scheduling agent
Parse scheduling intent from Gmail threads and create Google Calendar events with the right attendees and timezone.
ENGINEERING
Engineering standup agent
Aggregate GitHub and GitLab activity, link to Jira, and post a daily standup digest to Slack. No async updates.
Why Scalekit
Secure your agent's access. Connectors ship in minutes
Other connector libraries treat auth as a demo afterthought.
01.
Shared tokens break per-user analytics
A shared token looks fine in a demo. In production every call looks like a service account. Scalekit resolves the real user credential.
// shared token
audit → bot_service_account

// scalekit
audit → user_abc ✓
02.
Authentication is not authorization
03.
Multi-tenancy is architectural
04.
One connector today. Ten tomorrow.
“Our agents act across Salesforce, Gong, Google Drive, and more, on behalf of every customer. Scalekit behind the scenes meant we can keep adding tools without ever rebuilding how credentials or tool calling work.”
Venu Madhav Kattagoni
Head of Engineering / Von
FAQs
Frequently Asked Questions

Does the agent access Notion as the user or as a shared key?
As the user. Each workspace member authorizes once and Scalekit resolves their credential at request time. Audit logs attribute every action to that user, not a shared service account.

Where is the Notion OAuth token stored?
In Scalekit's managed AES-256 token vault, namespaced per tenant. Refresh is automatic. Revocation is a single dashboard action. Tokens never appear in prompts, logs, or LLM context.

Can I limit what the agent is allowed to do in Notion?
Yes. Pass a tool name filter to listScopedTools so the productivity agent only sees the subset you authorize. Pre-API-call scope checks block out-of-policy actions before the request reaches Notion.

What happens when a user revokes Notion access?
The connection is invalidated on the next tool call. Subsequent requests for that user fail closed with a clear error. Other users in the tenant remain unaffected. The event is logged for audit.

Can the agent access private pages and databases?
Only pages and databases shared with the authorizing user. Cross-user access stays denied. The agent inherits the user's Notion read and write scope at request time.

Start in your coding agent
Up and running in one command
Install the Scalekit skill in your editor of choice. Connector, auth, tools, prompt, all wired up
Claude Code REPL
/plugin marketplace add scalekit-inc/claude-code-authstack
/plugin install agentkit@scalekit-auth-stack
Cursor Code REPL
# ~/.cursor/mcp.json
{
""mcpServers"": {
""notionmcp"": {
""url"": ""https://mcp.scalekit.com/notionmcp"",
""headers"": { ""Authorization"": ""Bearer $SCALEKIT_TOKEN"" }
}
}
}
Codex Code REPL
# ~/.codex/config.toml
[mcp_servers.notionmcp]
url = ""https://mcp.scalekit.com/notionmcp""
auth_env = ""SCALEKIT_TOKEN""
Copilot Code REPL
# .vscode/mcp.json
{
""servers"": {
""notionmcp"": {
""url"": ""https://mcp.scalekit.com/notionmcp"",
""type"": ""http""
}
}
}