Enables secure interaction with Charles Schwab accounts, accessing real-time market data, account balances, positions, transactions, orders, and options chains through the official Schwab API
Deployed on Cloudflare Workers with Durable Objects for state management and secure token storage
A Model Context Protocol (MCP) server that enables AI assistants like Claude to securely interact with Charles Schwab accounts and market data through the official Schwab API.
Ask Claude to:
"Show me my Schwab account balances and positions"
"Get real-time quotes for AAPL, GOOGL, and MSFT"
"What are today's market movers in the $SPX?"
"Show me the options chain for TSLA with Greeks"
"Get my transactions from the last 30 days"
"Search for ETFs related to technology"
"Check if the markets are open"
This is an unofficial, community-developed TypeScript MCP server for Charles Schwab. It has not been approved, endorsed, or certified by Charles Schwab. It is provided as-is, and its functionality may be incomplete or unstable. Use at your own risk, especially when dealing with financial data or transactions.
This MCP server acts as a bridge between AI assistants and the Schwab API, providing:
Secure OAuth Authentication: Implements Schwab's OAuth 2.0 flow with PKCE for secure authentication
Comprehensive Trading Tools: Access to accounts, orders, quotes, and transactions
Market Data Tools: Real-time quotes, price history, market hours, movers, and options chains
Account Privacy: Built-in account identifier scrubbing to protect sensitive information
Enterprise-Ready: Deployed on Cloudflare Workers with Durable Objects for state management
Account Management
getAccounts: Retrieve all account information with positions and balances
getAccountNumbers: Get list of account identifiers
Order Management
getOrder: Get order by ID
getOrders: Fetch orders with filtering by status, time range, and symbol
getOrdersByAccountNumber: Get orders by account number
cancelOrder: Cancel an order (Experimental)
placeOrder: Place an order (Experimental)
replaceOrder: Replace an order (Experimental)
Market Quotes
getQuotes: Get real-time quotes for multiple symbols
getQuoteBySymbolId: Get detailed quote for a single symbol
Transaction History
getTransactions: Retrieve transaction history across all accounts with
date filtering
User Preferences
getUserPreference: Retrieve user trading preferences and settings
Instrument Search
searchInstruments: Search for securities by symbol with
fundamental/reference data
Price History
getPriceHistory: Get historical price data with customizable periods and
frequencies
Market Hours
getMarketHours: Check market operating hours by date
getMarketHoursByMarketId: Get specific market information
Market Movers
getMovers: Find top market movers by index ($SPX, $COMPX, $DJI)
Options Chains
getOptionChain: Retrieve full options chain data with Greeks
getOptionExpirationChain: Get option expiration dates
Schwab Developer Account: Register at Schwab Developer Portal
Cloudflare Account: For deployment (Workers paid plan required for Durable Objects)
Node.js: Version 22.x or higher
Wrangler CLI: Installed via npm (included in dev dependencies)
wrangler.example.jsonc - Template configuration (committed)
wrangler.jsonc - Your personal config (git-ignored, created from template)
.dev.vars - Local development secrets (git-ignored, optional)
Since wrangler.jsonc is git-ignored, you can safely develop and test with your
personal configuration without exposing secrets.
Log in to the Schwab Developer Portal
Create a new app with:
App Name: Your MCP server name
Callback URL:
https://schwab-mcp.<your-subdomain>.workers.dev/callback
App Type: Personal or third-party based on your use case
Note your App Key (Client ID) and generate an App Secret
The same secrets from Quick Setup need to be set (see above).
For automated deployments, add these GitHub repository secrets:
CLOUDFLARE_API_TOKEN: Your Cloudflare API token
OAUTH_KV_ID: Your KV namespace ID
The workflow handles validation and deployment when pushing to main.
Cloudflare secrets must still be set via wrangler secret.
Test your deployment using the MCP Inspector:
Enter https://schwab-mcp.<your-subdomain>.workers.dev/sse and connect. You'll
be prompted to authenticate with Schwab.
Go to the Claude Desktop settings
Click on the "Integrations" tab
Click on the "Add Custom Integration" button
Enter the integration name "Schwab"
Enter the MCP Server URL:
https://schwab-mcp.<your-subdomain>.workers.dev/sse
Click on the "Add" button
Click "Connect" and the Schwab Authentication flow will start.
Add the following to your Claude Desktop configuration file:
Restart Claude Desktop. When you first use a Schwab tool, a browser window will open for authentication.
Once connected, you can ask Claude to:
"Show me my Schwab account balances"
"Get a quote for AAPL"
"What are today's market movers in the $SPX?"
"Show me the options chain for TSLA"
"Get my recent transactions from the last week"
For local development, create a .dev.vars file (automatically ignored by git):
Run locally:
Connect to http://localhost:8788/sse using the MCP Inspector for testing.
Runtime: Cloudflare Workers with Durable Objects
Authentication: OAuth 2.0 with PKCE via
@cloudflare/workers-oauth-provider
API Client: @sudowealth/schwab-api for type-safe Schwab API access
MCP Framework: @modelcontextprotocol/sdk with workers-mcp adapter
State Management: KV storage for tokens, Durable Objects for session state
OAuth 2.0 with PKCE: Secure authentication flow preventing authorization code interception
Enhanced Token Management:
Centralized KV token store with automatic migration
Automatic token refresh (5 minutes before expiration)
31-day token persistence with TTL
Account Scrubbing: Sensitive account identifiers are automatically replaced with display names
State Security: HMAC-SHA256 signatures for state parameter integrity
Cookie Encryption: Client approval state encrypted with AES-256
Secret Redaction: Automatic masking of sensitive data in logs
The server includes comprehensive logging with configurable levels:
Development: Terminal output with colored logs
Production: Cloudflare dashboard → Workers → Logs
Log Levels: DEBUG, INFO, WARN, ERROR (set via LOG_LEVEL env var)
Enable debug logging to see detailed OAuth flow and API interactions:
The server implements robust error handling with specific error types:
Authentication Errors (401): Prompt for re-authentication
Client Errors (400): Invalid parameters, missing data
Server Errors (500): API failures, configuration issues
Network Errors (503): Automatic retry with backoff
All errors include request IDs for Schwab API troubleshooting
Fork the repository
Create a feature branch (git checkout -b feature/amazing-feature)
Commit your changes (git commit -m 'Add amazing feature')
Push to the branch (git push origin feature/amazing-feature)
Open a Pull Request
MIT
"KV namespace not found" error
Ensure you created the KV namespace and updated wrangler.jsonc
Run npx wrangler kv:namespace list to verify
Authentication failures
Verify your redirect URI matches exactly in Schwab app settings
Check that all secrets are set correctly with npx wrangler secret list
Enable debug logging to see detailed OAuth flow
"Durable Objects not available" error
Ensure you have a paid Cloudflare Workers plan
Durable Objects are not available on the free tier
Token refresh issues
The server automatically refreshes tokens 5 minutes before expiration
Tokens are migrated from clientId to schwabUserId keys automatically
Check KV namespace for stored tokens:
npx wrangler kv:key list --namespace-id=<your-id>
Enhanced Token Management: Centralized KV token store prevents token divergence
Improved Security: HMAC-SHA256 state validation and automatic secret redaction
Better Error Handling: Structured error types with Schwab API error mapping
Configurable Logging: Debug mode for troubleshooting OAuth and API issues
Built with Cloudflare Workers
Powered by @sudowealth/schwab-api
This server cannot be installed
remote-capable server
The server can be hosted and run remotely because it primarily relies on remote services or has no dependency on the local environment.
A Model Context Protocol server that enables AI assistants like Claude to securely interact with Charles Schwab accounts and market data through the official Schwab API.
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/sudowealth/schwab-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server