Connect
Optimize
Secure
Autodesk MCP Server
for AI Agents
Production-ready Autodesk MCP server with 51 extensible actions — plus built-in authentication, security, and optimized execution.
Autodesk MCP Server
Built by 
StackOne
StackOne 
Coverage
51 Agent Actions
Create, read, update, and delete across Autodesk — and extend your agent's capabilities with custom actions.
Authentication
Agent Tool Authentication
Per-user OAuth in one call. Your Autodesk MCP server gets session-scoped tokens with zero credentials stored on your infra.
Agent Auth →
Security
Agent Protection
Every Autodesk tool response scanned for prompt injection in milliseconds — 88.7% accuracy, all running on CPU.
Prompt Injection Defense →
Performance
Max Agent Context. Min Cost.
Free up to 96% of your agent's context window to enhance reasoning and reduce cost, on every Autodesk call.
Tools Discovery →What is the Autodesk MCP Server?
A Autodesk MCP server lets AI agents read and write Autodesk data through the Model Context Protocol — Anthropic's open standard for connecting LLMs to external tools. StackOne's Autodesk MCP server ships with 51 pre-built actions, fully extensible via the Connector Builder — plus managed authentication, prompt injection defense, and optimized agent context. Connect it from MCP clients like Claude Desktop, Cursor, and VS Code, or from agent frameworks like OpenAI Agents SDK, LangChain, and Vercel AI SDK.
All Autodesk MCP Tools and Actions
Every action from Autodesk's API, ready for your agent. Create, read, update, and delete — scoped to exactly what you need.
Account Users
- Create Account User
Add a new user to a BIM 360 account.
- List Account Users
Query all users in a specific BIM 360 account
- Get Account User
Get details of a specific user in a BIM 360 account by user ID.
- Update Account User
Update a specific user's status or default company in a BIM 360 account.
Account Projects
- Create Account Project
Create a new project in a BIM 360 account with required and optional settings.
- List Account Projects
List projects in a hub. Hub admins/executives see all projects; other users see only assigned projects.
- Update Account Project
Update properties of a specific BIM 360 project (name, status, dates, address, value, etc.).
Project Users
- Add Project User
Add a project admin to a specific BIM 360 project and service type. BIM 360 only — not compatible with ACC.
- List Project Users
List users in a project. Supports filtering by name, email, access level, company, role, status, products, and more.
- Update Project User
Update a user's company and industry roles for a BIM 360 project.
Business Units
- Create Business Units
Create or redefine the business units of a specific BIM 360 account or Forma hub.
- List Business Units
Query all business units in a specific BIM 360 account or Forma hub.
Hubs
- List Hubs
List all accessible hubs for the authenticated user
- Get Hub
Get details of a specific hub by ID
Projects
- List Projects
List all projects within a specific hub
- Get Project
Get details of a specific project
Folders
- Create Folder
Create a new folder in a project
- Get Folder
Get details of a specific folder
- Search Folder
Search for items within a folder
- Update Folder
Rename or move a folder
Buckets
- Create Bucket
Create a new OSS bucket owned by the calling application.
- List Buckets
List the buckets owned by the calling application. Supports pagination.
- Delete Bucket
Delete a bucket owned by the calling application. Irreversible.
Items
- Create Item
Create the first version of a file (item) in a project folder. Requires a pre-uploaded storage object. Or use `upload_file_in_project_folder` for a single-call workflow.
- Get Item
Get details of a specific item (file) by ID
- Update Item
Update properties of an existing item (file) in a project — extension metadata and description.
Versions
- Create Version
Create a new version of an existing item (file) in a project. Requires a pre-uploaded storage object.
- Get Version
Get details of a specific version, including the storage URN needed for downloading the file.
Webhooks
- Create Webhook
Add a new webhook to receive notifications on a specified system event.
- List Webhooks
List all registered webhooks (paginated). Returns the first page if `pageState` is not provided.
- Get Webhook
Get details of a specific webhook by its hook ID (callback URL, scope, status, creator, and configuration).
- Update Webhook
Partially update a webhook (status, filter, hookAttribute, token, autoReactivateHook, hookExpiry).
- Delete Webhook
Delete a webhook subscription based on its `hook_id`. Permanent — the webhook will no longer receive event notifications.
Other (18)
- Create Storage
Create a storage location (placeholder) for a file in a project, returning a storage URN for later binary upload.
- Upload Binary To Signed S3 URL
PUT binary content directly to a signed S3 upload URL obtained from `get_signed_s3_upload_urls`. No Autodesk auth is sent — the URL is pre-signed.
- Upload File In Project Folder
Upload a file binary and create an item (with first version) inside a project folder, in one call.
- List Account Companies
List companies in a hub. Supports filtering by name, trade, ERP ID, tax ID, status, and date range.
- List Project Industry Roles
List the industry roles for a BIM 360 project (e.g., contractor, architect). BIM 360 only — not compatible with ACC.
- List Top Folders
List the root (top-level) folders in a project
- List Folder Contents
List the contents of a specific folder
- Get Bucket Details
Get details of a specific bucket owned by the calling application.
- List Bucket Objects
List all objects in a specific bucket (paginated). Use this to discover `objectKey` values for `get_signed_s3_download_url`.
- Get Item Tip Version
Get the latest (tip) version of an item, including the storage URN needed for downloading the file.
- List Item Versions
List all versions of a specific item
- Get Signed S3 Download URL
Get a signed S3 URL to download an object directly from Autodesk OSS. Works with both 3-legged and 2-legged auth depending on bucket ownership.
- Get Signed S3 Upload URLs
Get signed S3 URLs that the client can PUT binary parts to. Step 2 of the file-upload workflow. Pass the returned URLs to `upload_to_s3` action.
- Get Version Download Formats
Get available download formats for a version
- Get Version Downloads
Get download links for a version
- List Webhooks By System
List all webhooks for a specific system (paginated). Returns the first page if `pageState` is not provided.
- Delete Object
Delete an object from an app-owned OSS bucket. This operation is irreversible.
- Signed S3 Upload
Finalize a signed S3 upload session to OSS after uploading binary via `upload_to_s3` action. Step 4 of the file-upload workflow.
Set Up Your Autodesk MCP Server in Minutes
One endpoint. Any framework. Your agent is talking to Autodesk in under 10 lines of code.
MCP Clients
Agent Frameworks
JSON{
"mcpServers": {
"stackone": {
"command": "npx",
"args": [
"-y",
"mcp-remote@latest",
"https://api.stackone.com/mcp?x-account-id=<account_id>",
"--header",
"Authorization: Basic <YOUR_BASE64_TOKEN>"
]
}
}
}More Design & Visual MCP Servers
Autodesk MCP Server Resources
MCP Code Mode: Keeping Tool Responses Out of Agent Context
Anthropic's code_execution processes data already in context. Custom MCP code mode keeps raw tool responses in a sandbox. 14K tokens vs 500.
11 min
Comparing BM25, TF-IDF, and Hybrid Search for MCP Tool Discovery
Benchmarking BM25, TF-IDF, and hybrid search for MCP tool discovery across 916 tools. The 80/20 TF-IDF/BM25 hybrid hits 21% Top-1 accuracy in under 1ms.
10 min
Indirect Prompt Injection Defense for MCP Tools: A Technical Guide
MCP tools that read emails, CRM records, and tickets are indirect prompt injection vectors. Here's how we built a two-tier defense that scans tool results in ~11ms.
12 min
Autodesk MCP Server FAQ
Autodesk MCP server vs direct API integration — what's the difference?
A Autodesk MCP server and direct API integration serve different use cases. Direct API integration is for software-to-software — backend code calling Autodesk. A Autodesk MCP server is for AI agents — MCP clients like Claude and Cursor, plus framework agents built with OpenAI, LangChain, or Vercel AI — discovering and calling Autodesk at runtime. StackOne provides both.
How does Autodesk authentication work for AI agents?
Autodesk authentication for AI agents works through a StackOne Connect Session. Create one via the dashboard or the SDK — you get an auth link and ready-to-paste config for Claude Desktop, Cursor, and other MCP clients. Your user authenticates their own Autodesk account; StackOne handles token exchange, storage, and refresh. Credentials never reach the LLM, and each user is isolated via
origin_owner_id.Are Autodesk MCP tools vulnerable to prompt injection?
Yes — Autodesk MCP tools can be vulnerable to indirect prompt injection. Any tool that reads user-written content — documents, messages, tickets, records, or free-text fields — is a potential vector. StackOne Defender scans every tool response before it enters the agent's context — regex patterns in ~1ms, then a MiniLM classifier in ~4ms. 88.7% accuracy, CPU-only.
What is the context bloat of a Autodesk agent and how do I avoid it?
Context bloat happens when Autodesk tool schemas and API responses eat your Autodesk agent's memory, preventing it from reasoning effectively. A single Autodesk query can return a massive JSON response, and connecting multiple tools compounds the problem. Tools Discovery and Code Mode reduce context bloat — loading only relevant tools per query and keeping raw responses out of the agent's context.
Can I limit which actions my Autodesk agent can access?
Yes — you can limit which actions your Autodesk agent can access directly from the StackOne dashboard. Toggle actions on or off, or restrict them to specific accounts, with no code changes to your agent. Session tokens can be scoped to exact actions so if one leaks, exposure stays contained.
Can I create custom agent actions for my Autodesk MCP server?
Yes — you can create custom agent actions for your Autodesk MCP server using Connector Builder. It's an integration agent your coding assistant (Claude Code, Cursor, or Copilot) can invoke to research Autodesk's API, generate production-ready connector YAML, test against the live API, and validate before you ship.
When should I NOT use a Autodesk MCP server?
Skip a Autodesk MCP server if your integration is purely software-to-software — direct Autodesk API integration is simpler when no AI agent is involved. For deterministic, compliance-critical operations (financial transactions, regulatory reporting), direct API gives you predictable behavior without agent-driven decision-making. MCP shines when AI agents need to dynamically discover and call Autodesk actions at runtime.
What AI frameworks and AI clients does the StackOne Autodesk MCP server support?
The StackOne Autodesk MCP server supports both. MCP clients (paste-and-go apps): Claude Desktop, Claude Code, Cursor, VS Code, Goose. Agent frameworks (code SDKs you build with): OpenAI Agents SDK, Anthropic, Vercel AI, Google ADK, CrewAI, Pydantic AI, LangChain, LangGraph, Azure AI Foundry.
Put your AI agents to work
All the tools you need to build and scale AI agent integrations, with best-in-class connectivity, execution, and security.