xint-mcp-policy-tiers-must-match-credential-phases
xint MCP registration uses read_only policy for Phase 1 and Phase 2 (no write operations possible without OAuth). Phase 2b engagement/write commands require an engagement policy tier. Registering with read_only when OAuth credentials are present silently blocks all write-capable tools. The MCP .mcp.json entry must be updated alongside credential activation when advancing phases.
Related
- xint-phased-credential-activation-model
- xint-mcp-credential-tier-separation-required
- xint-three-phase-credential-unlock-model
- xint-mcp-policy-tier-must-match-credential-phase
- mcp-tool-tiers-must-match-credential-requirements
- xint-oauth-pkce-callback-url-and-required-scopes
- xint-mcp-tier-must-match-credential-phase
- xint-oauth-pkce-callback-server-binds-to-port-3333-not-8477
- xint-mcp-engagement-policy-required-for-phase-2b
- xint-mcp-policy-must-upgrade-to-engagement-after-oauth
- xint-mcp-must-specify-engagement-policy
- xint-mcp-default-policy-read-only-engagement-requires-explic