MCP cannot be integrated into Amazon Quick

housjun · April 30, 2026, 2:28pm

Hi everyone, I’m currently encountering two issues:

After the QS (Quick Suite) system update, I want to integrate a public network MCP. During the step of using Federate for OAuth2 authorization verification, I’m getting an error saying the scope parameter is missing. I did not encounter this issue in the previous version.
How to integrate a VPC-protected MCP with QS — I tried using the built-in VPC authentication, but it doesn’t seem to work properly.

Please provide me with some solutions. Thank you.

Xclipse · April 30, 2026, 3:27pm

Welcome to the Quick Suite community!

The error “invalid_scope” -“The ‘scope’ request parameter is required” is caused by a known behavior in the current Quick Suite MCP client.

Quick Suite determines OAuth2 scopes from the MCP server’s Protected Resource Metadata document (RFC 9728) rather than from the 401 WWW-Authenticate challenge. If the metadata document does not include the scopes_supported field, Quick Suite applies default scopes, which some authorization servers reject.

Regarding the VPC-protected MCP integration - Note: MCP integration supports remote servers only. HTTP streaming is preferred over Server-Sent Events (SSE). Local stdio connections and VPC connectivity are not supported.

Please refer to the following documentation this might be helpful for you.

anhpnh · April 30, 2026, 5:49pm

Hi,

I meet the same issue now, which has not happened for the last version.

housjun · May 7, 2026, 2:18am

Before the Quick Suite upgrade, my integration method was working correctly. After the upgrade, MCP integration started failing with invalid_scope. I found that if I manually append the scope parameter to the authentication link that Quick Suite pops up, it works normally. So I’m confused about what I need to modify to fix this.

Xclipse · May 7, 2026, 5:58am

Hi @housjun

As per Amazon Quick MCP official documentation, Quick no longer extracts the scope parameter from the 401 WWW-Authenticate challenge (which is likely how it worked for you previously). Instead, it now reads scopes from your MCP server’s Protected Resource Metadata document (RFC 9728).

Please verify that your MCP server serves a Protected Resource Metadata document at, https://<your-mcp-server>/.well-known/oauth-protected-resource and include the scopes_supported field with the scopes your authorization server requires.

Example:

{
"resource": "https://<your-mcp-server>/",
"authorization_servers": ["https://<your-auth-server>/"],
"scopes_supported": ["read", "write", "openid"]
}

When the metadata does not specify supported scopes, Amazon Quick applies default scopes rather than omitting them. This behavior might cause authentication failures with servers that do not recognize the default scopes.

Topic		Replies	Views
Unable to add MCP integration in Amazon Quick Q&A error , Automation-User , MCP	5	207	January 16, 2026
MCP Integration via Quick Fails Q&A Automation-User , automate , amazon-quick , MCP	5	315	November 21, 2025
Quick does not detect integrated MCP Q&A error , business-user , MCP	2	40	April 23, 2026
Refreshing an mcp integration with quicksuite Q&A error , business-user , MCP	2	197	October 30, 2025
Quick MCP Action not propagating Transitive Auth (TA) Token Q&A business-user , MCP	3	30	March 15, 2026

MCP cannot be integrated into Amazon Quick

Related topics