Developers
Use your vault from anywhere.
Granite gives your agents and scripts a read-only door into your vault — find a document, read its fields, or ask a question in plain English. Two ways in, one token.
HTTP API
A read-only REST API to search, list, read, and ask your vault. Bearer-authed with a Personal Access Token.
Read the docs →MCP server
A local Model Context Protocol server that drops your vault into Claude Desktop, Claude Code, Cursor, or Codex as tools.
Read the docs →Get a token
Both surfaces authenticate with a Personal Access Token. Create one under Settings → Developer → Access tokens. The token is shown once at creation — copy it then. Treat it like a password: anyone holding it can read everything the token's scopes allow, including sensitive documents.
The API and MCP server are part of Granite Paid. They are read-only — uploads stay on the web app and email-in.
At a glance
Base URL https://api.granite.co/v1 · auth Authorization: Bearer gra_live_… · the MCP package is @graniteco/mcp, run via npx.