docs: add hosted MCP server config generator

[andrelandgraf]

Summary

• replace the old MCP setup tabs in neon-mcp-server docs with a new interactive MCP Server Config Generator
• generate hosted Neon MCP JSON + add-mcp command snippets from auth/transport/access selections
• preview selected and excluded tools via list-tools, with loading/error/retry states and graceful fallback behavior

Test plan

• run website locally and verify /docs/ai/neon-mcp-server renders the configurator
• run local mcp-server-neon and verify /api/list-tools returns 200
• verify generated output behavior:
  • omit X-Neon-Read-Only when read-only is disabled
  • omit X-Neon-Scopes when none or all categories are selected
  • include expected headers for API key mode and project-scoped mode

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
neon-next	Ready	Preview, Comment	May 3, 2026 4:57am

[andrelandgraf]

Updated configurator: query-param-based config + UI polish

The hosted Neon MCP server recently moved from X-Neon-* custom headers to URL query params (readonly, projectId, category) on the /mcp endpoint. The configurator has been rewritten against that contract and polished visually.

What changed

• Generated URL now encodes access controls as query params (e.g. https://mcp.neon.tech/mcp?readonly=true&projectId=proj_123&category=projects,branches,schema,querying) — matches resolveGrantFromSearchParams in mcp-server-neon.
• Only Authorization header is emitted, and only in API Key mode. The X-Neon-* allow-list / header validation is gone.
• List-tools preview uses the same query params so the tool diff is always consistent with the generated URL.
• Dropped the next/dynamic({ ssr: false }) wrapper — Next.js 16 disallows it from Server Components, and the component is already 'use client'.

UI polish

• Segmented Auth mode control with inline descriptions.
• Custom read-only switch and compact access card.
• Tool categories as 2-column cards with descriptions + Select/Clear all toggle.
• Live Server URL preview with highlighted query params.
• Tool pills split into enabled (colored) and hidden (struck-through) groups with counts.
• Responsive classes flipped to match the repo's desktop-first Tailwind variants.

Screenshots (hosted on screenshots/pr-4599 branch; delete that branch after review)

1. Default — OAuth, all scopes enabled

2. API Key mode

API key is plumbed into both the add-mcp command and JSON config headers.Authorization.

3. Fully restricted — read-only + single project + subset of categories

Note the live URL preview with highlighted readonly, projectId, and category query params, and the enabled/hidden tool split (11 enabled · 18 hidden).

4. Dark mode

[andrelandgraf]

Follow-up: further UI trim

The configurator was further simplified in 143415d4. Screenshots in the comment above have been refreshed to match.

Removed

• HOSTED · STREAMABLE HTTP badge in the header
• Visible CONFIGURATION section label (kept as sr-only <h4>)
• OAuth re-authorize warning block
• Server URL preview block (the URL is already visible in the add-mcp command and JSON config below)

The branch was also rebased onto latest main (linear history, no merge commits).