Use direct setup when you already know the concrete source Lucim should monitor.

Console workflow

1

Choose Watch dependency

Open Monitors and expand Watch dependency.
2

Select a capability

Choose a category and source type. The form is generated from GET /api/monitor-capabilities, including locator fields and authentication-reference support.
3

Enter the locator

Provide the requested URL, package name, repository, or structured locator. Direct MCP sources accept only HTTPS Streamable HTTP endpoints.
4

Create the monitor

Lucim validates the locator, creates the entity/source/watch set through tenant-aware services, and requests a first capture for active sources.

REST example

Create an OpenAPI monitor with a key that has the write scope:
The response includes the new watch ID, entity_id, and source_id.

Authenticated MCP sources

Store only an auth_ref in the locator. A deployment-owned reference uses an allowlisted environment variable such as env://LUCIM_MCP_AUTH_PAYMENTS; tenant-managed credentials use an encrypted reference. Workers resolve the secret at capture time and persist only non-secret auth metadata.
Never place a bearer token or API key in a source URL, locator, console field, or committed configuration.