Best Practices
This guide covers recommended patterns for configuring your MCP Pay servers, structuring plans, and handling common scenarios.
Plan Configuration
Free Tier Strategy
Always configure a free/default plan that provides:
- Basic tools for discovery - Let users try your service
- Limited quota - Prevent abuse while allowing evaluation
- Clear upgrade path - Make it obvious how to get more
A well-designed free tier converts trial users to paid customers.
Tool Tiering
Structure your plans by tool access to create clear value differentiation:
| Plan | Tools | Quota | Price |
|---|---|---|---|
| Free | basic_search, list_items | 100 calls/month | $0 |
| Pro | All Free + advanced_search, export | 10,000 calls/month | $19/month |
| Enterprise | All tools + admin_* | Unlimited | Custom |
Tiering Strategies
By Feature Complexity:
- Free: Read-only operations
- Pro: Write operations, exports
- Enterprise: Admin, bulk operations
By Use Case:
- Free: Personal/hobby use
- Pro: Professional use
- Enterprise: Team/organization use
By Volume:
- All tiers get same tools
- Differentiate by quota limits
Quota Management
Configure appropriate quotas per plan to balance user experience with cost control.
Quota Settings
| Setting | Description |
|---|---|
| Units | Number of tool calls included per billing period |
| Free Units | Bonus units (e.g., for trials or promotions) |
| Overage Behavior | What happens when quota is exceeded |
Overage Options
- Hard limit - Block requests when quota exhausted
- Soft limit - Allow continued use, charge overage fees
- Notify only - Allow use but alert the user
Quota Recommendations
- Free tier: Hard limit to prevent abuse
- Paid tiers: Soft limit with overage, or generous quotas
- Enterprise: Unlimited or very high limits
Tool Assignment Patterns
Default Plan Inclusion
The default plan is automatically included for all protected tools unless you explicitly select "No plan."
When to keep default plan:
- Tools that demonstrate value
- Basic functionality users expect
- Onboarding-essential tools
When to remove default plan:
- Premium-only features
- High-cost operations
- Advanced functionality
Unprotected Tools
Mark tools as "No plan" when they should be:
- Freely accessible without authentication
- Not tracked for usage
- Utility tools that support other operations
Examples of good candidates for "No plan":
get_version- Returns API versionlist_capabilities- Shows available featuresping- Health check
User Flow Optimization
Onboarding Flow
Design your tool access to create a smooth onboarding experience:
- Discovery - Free tools let users explore
- Value demonstration - Users see what's possible
- Limitation encounter - User hits paywall on premium feature
- Easy upgrade - Virtual tools provide checkout path
- Activation - Immediate access after payment
Paywall Messaging
When users hit a paywall, the response should:
- Clearly explain what they're trying to access
- Identify which plan(s) provide access
- Include direct checkout links
AI agents can use this information to guide users naturally.
Security Best Practices
API Key Protection
If your origin server requires authentication:
- Store the API key in MCP Pay settings (encrypted at rest)
- Never include it in client-facing URLs or responses
- Rotate keys periodically
- Use separate keys for MCP Pay vs direct access
Origin Server Access
Consider restricting your origin server to only accept requests from SolvaPay:
- Whitelist SolvaPay IP ranges
- Require the API key for all requests
- Monitor for direct access attempts
Monitoring and Analytics
Key Metrics to Track
| Metric | What It Tells You |
|---|---|
| Tool usage by plan | Which features drive upgrades |
| Conversion rate | Free-to-paid effectiveness |
| Quota utilization | If limits are appropriately set |
| Error rates | Origin server health |
| Authentication failures | User experience issues |
Dashboard Usage
Regularly review the MCP Pay dashboard to:
- Monitor active users and usage patterns
- Identify popular and underused tools
- Track revenue and subscription metrics
- Spot anomalies or abuse patterns
FAQ
Can I use MCP Pay with any MCP server?
Yes, as long as your MCP server is accessible via HTTPS. SolvaPay connects to your origin URL to discover tools and proxies requests at runtime.
How do users authenticate?
Users authenticate via OAuth 2.0 using their Google or GitHub account. When they add your MCP server to their client (like Cursor), a browser window opens for sign-in. No passwords or API keys to manage.
What MCP clients are supported?
Any MCP client that supports OAuth 2.0 with PKCE can connect to MCP Pay servers. This includes Cursor, Claude Desktop, and other MCP-compatible tools. DCR support means clients can auto-configure themselves.
How are origin server API keys handled?
If your origin MCP server requires authentication, you can configure an API key in the MCP server settings. This key is encrypted at rest and never exposed—SolvaPay uses it internally when forwarding requests to your origin server.
What happens if my origin server is down?
The proxy will return an error to the client. SolvaPay does not cache responses or provide fallback behavior. Monitor your origin server availability.
Can I change tool plan assignments after creation?
Yes, you can edit the MCP server configuration at any time. Changes take effect immediately for new tool invocations. Existing active sessions are not disrupted.
How do I track usage and revenue?
The MCP Pay dashboard shows transaction history, usage statistics, and revenue metrics. You can also view per-server stats from the server detail drawer.
Can I customize the hosted pages?
All hosted pages (login, checkout, account portal) automatically display your provider branding including logo, colors, and fonts. Configure these in Settings > Pages. For advanced customization beyond branding, consider the SDK integration approach.
Do I need to build payment or account pages?
No. MCP Pay provides fully hosted checkout and account management pages. Customers can subscribe to plans, manage their subscriptions, and view billing history without you building any UI. All pages are white-labeled with your branding.
Can I migrate from MCP Pay to SDK integration later?
Yes. You can start with MCP Pay for quick setup and migrate to SDK integration if you need more control. Your plans, customers, and subscriptions remain intact—only the integration method changes.
How do I handle refunds?
Refunds are processed through your Stripe dashboard. When you refund a payment:
- The subscription may be cancelled depending on your refund settings
- Tool access is adjusted based on new subscription status
- Customer receives notification
What if a customer disputes a charge?
Stripe handles disputes through their standard process. You'll receive notification and can provide evidence through the Stripe dashboard. During dispute resolution, the subscription typically remains active.
Troubleshooting
Tools Not Discovered
If tool discovery fails:
- Verify origin URL is correct and accessible
- Check API key if required
- Ensure origin server responds to MCP protocol
- Try accessing origin URL directly to verify it's online
Users Can't Authenticate
If authentication fails:
- Verify MCP server is active (not disabled)
- Check proxy URL is correct
- Ensure browser allows popups for OAuth
- Try a different browser
Tool Calls Failing
If authenticated tool calls fail:
- Check user's subscription status
- Verify tool is assigned to user's plan
- Check if quota is exhausted
- Review origin server logs for errors
Next Steps
- MCP Pay Overview - Review core concepts
- Quick Start - Set up your first server
- Authentication - Deep dive into OAuth