Switchy
Sign up
otherapi_key

Dock Certs

Dock Certs is a platform that enables organizations and developers to issue, manage, and verify verifiable credentials and decentralized identities, making data fraud-proof and instantly verifiable.

Verdict

Dock Certs issues and manages verifiable credentials — digital certificates that prove identity, qualifications, or compliance without revealing unnecessary data. In Switchy, @mentioning Dock Certs lets your team create credentials, revoke them when someone leaves, set up webhooks to track issuance events, and manage API keys for external integrations. Compliance teams use it to automate certificate lifecycle management; HR uses it to issue employee credentials on demand. You'll need a Dock Certs account and an API key with appropriate permissions — credential creation and deletion require elevated scopes.

Common use cases

  • Issue employee credentials on their first day
  • Revoke access certificates when contractors offboard
  • Track credential issuance events via webhook
  • Audit active API keys across integrations
  • Delete expired compliance certificates in bulk

Integration

Vendor
Dock Certs
Category
other
Auth
API_KEY
Tools
15
Composio slug
dock_certs

Tools

  • Create API Key

    Tool to create an API key. Use when you need to generate a new API key with optional alias and IP allowlist.

  • Create Webhook

    Tool to create a webhook endpoint. Use when you need Dock.io to push event notifications to your service.

  • Delete API Key
    destructive

    Tool to delete a specific API key. Use after confirming the API key's ID via list_api_keys.

  • Delete Credential
    destructive

    Tool to delete a verifiable credential. Use after confirming the credential is no longer needed.

  • Delete Tag
    destructive

    Tool to delete a specific tag. Use when you have a tag ID and want to permanently remove it.

  • Delete Webhook
    destructive

    Tool to delete a specific webhook. Use after confirming the webhook's ID via list_webhooks.

  • Retrieve API Key

    Tool to retrieve details of an API key. Tries single-key endpoint first, then falls back to listing and filtering.

  • Retrieve API Keys

    Tool to list all API keys. Use when you need to retrieve all API keys for the authenticated account.

  • Retrieve Credential

    Tool to retrieve a verifiable credential by its unique ID. If a password was used to persist it, include the same password to decrypt and return the full credential. Otherwise, only metadata is returned.

  • Retrieve Credentials

    Tool to retrieve a list of credential metadata. Use when you need to collect credential details with optional pagination or filtering after authentication.

  • Retrieve DID Document

    Tool to retrieve a DID Document by its DID. Use after you have a valid DID to resolve and inspect its DID Document.

  • Retrieve Revocation Registries

    Tool to retrieve a list of revocation registries. Use when you need to list all registries created by the authenticated account with optional pagination and filtering.

  • Retrieve Webhook

    Tool to retrieve a specific webhook's details. Use after confirming you have a valid webhook ID.

  • Retrieve Webhooks

    Tool to list configured webhooks. Use when you need to retrieve all webhook endpoints configured for your account.

  • Verify Credential or Presentation

    Tool to verify a verifiable credential or presentation. Use after receiving a credential or presentation from an issuer.

Setup

Setup guide

  1. 11. In Switchy, open your workspace settings and navigate to the Integrations tab. 2. Click 'Add MCP Integration' and select Dock Certs from the list. 3. Log into your Dock Certs dashboard, go to Settings > API Keys, and generate a new key with permissions for credentials, webhooks, and tags. 4. Copy the API key and paste it into the Switchy connection dialog, then click 'Connect'. 5. Switchy will verify the key by listing your existing credentials — if the test succeeds, you'll see a green checkmark. 6. Open any Space, type '@Dock Certs list credentials' in the chat, and confirm you see your credential inventory. 7. If you need to create credentials, ensure your API key has 'write:credentials' scope; if you only see read-only errors, regenerate the key with elevated permissions in the Dock dashboard.

What teammates see: by default, memories from Dock Certs are scoped to the Space (PROJECT visibility) - you can mark any memory PRIVATE or share it ORG-wide.

Works well with

Top models

Compatibility data appears once enough Spaces have used this MCP together with a given model.

How Switchy teams use it

Not enough Spaces yet to publish anonymised usage stats (we require ≥ 50 Spaces per week).

Starter prompts

List Active Credentials

@Dock Certs list all active credentials in our account and show me their issuance dates and credential types.
Open in a Space →

Create Onboarding Credential

@Dock Certs create a verifiable credential for a new hire named Alex Chen with employee ID 4782 and start date January 15, 2025.
Open in a Space →

Revoke Contractor Access

@Dock Certs delete the credential with ID cred_9x4k2p and confirm it's been permanently revoked.
Open in a Space →

Set Up Issuance Webhook

@Dock Certs create a webhook pointing to https://hooks.slack.com/services/T00/B00/xxx that triggers on credential issuance events.
Open in a Space →

Audit API Key Usage

@Dock Certs retrieve all API keys for our account and show me their aliases, creation dates, and IP allowlists.
Open in a Space →

Example outputs

Illustrative - representative of the model's voice and quality, not literal recordings.

Prompt

@dock-certs list all active API keys for our account and show me which ones have IP restrictions configured

Output

Found 4 API keys for your Dock Certs account. Two keys have IP allowlists: 'Production API' (restricted to 203.0.113.0/24) created March 2024, and 'Staging Access' (restricted to 198.51.100.42) created January 2024. Two keys have no IP restrictions: 'Development Key' and 'CI Pipeline Key', both created in February 2024. The production key was last used 2 hours ago; the staging key hasn't been accessed in 14 days.

Notes

This example shows the MCP's read capability for API key management. Requires an API key with admin scope to list all keys. The response structure depends on what metadata Dock Certs returns — some accounts may see additional fields like usage timestamps or permission levels.

Prompt

@dock-certs create a new webhook that sends credential issuance events to https://our-app.example.com/webhooks/dock and include the credential payload in each notification

Output

Created webhook endpoint with ID 'wh_8x3k9m2p'. Dock Certs will now POST to https://our-app.example.com/webhooks/dock whenever a credential is issued. Events include: credential.created, credential.issued, credential.revoked. Each payload contains the full credential JSON. Your endpoint must respond with 200 OK within 10 seconds or Dock will retry up to 3 times with exponential backoff. Webhook secret for signature verification: whsec_7j4n2k8m (store this securely).

Notes

Demonstrates the MCP's write capability for event subscriptions. This action has side-effects: your endpoint will immediately start receiving POST requests from Dock's servers. Ensure your webhook URL is publicly accessible and can handle Dock's retry logic. You'll need to implement signature verification using the provided secret.

Prompt

@dock-certs review all credentials we've issued in the last 30 days and flag any that are missing a 'department' tag so we can audit our tagging compliance

Output

Analyzed 47 credentials issued since December 15. Found 12 credentials without a 'department' tag: 8 employee verification credentials (IDs: cred_4k2m, cred_5n8p, cred_7j3q, cred_9r2s, cred_1t4u, cred_3v6w, cred_5x8y, cred_7z1a), 3 contractor certifications (cred_2b4c, cred_6d8e, cred_9f1g), and 1 training completion badge (cred_4h6i). All 12 were issued by API key 'HR Automation' between Dec 18-22. The remaining 35 credentials have proper department tags: 22 tagged 'Engineering', 9 tagged 'Sales', 4 tagged 'Operations'.

Notes

Shows how the MCP pairs with AI reasoning to audit credential metadata. This requires the MCP to fetch credential lists and the AI to filter/categorize results. Dock Certs may paginate large result sets, so the actual query might involve multiple API calls. Tagging schemas are account-specific — your 'department' tag may not exist or may use different values.

Use-case deep-dives

Credential lifecycle for compliance teams

When Dock Certs works for audit-ready credential tracking

A 6-person compliance team at a healthcare SaaS company issues verifiable credentials to contractors after security training. They need an audit trail showing who issued what, when, and whether credentials were revoked. Dock Certs wins here because the 15 tools cover the full lifecycle: create, retrieve, delete credentials, plus webhook subscriptions for real-time revocation alerts. The API key management tools let you rotate keys quarterly without breaking integrations. The threshold: if you're issuing fewer than 50 credentials per month, the setup overhead (learning verifiable credential schemas, configuring webhooks) might outweigh the benefit. But once you hit that volume, the audit log alone justifies the integration. Use this when credential provenance matters more than speed.

Partner onboarding with verifiable badges

Dock Certs for multi-org credential exchange at scale

A 12-person partner ops team at an ed-tech platform issues completion badges to learners across 40 partner organizations. Each partner needs to verify badges without calling the platform's API every time. Dock Certs handles this because verifiable credentials are cryptographically signed—partners verify locally, no live lookup required. The webhook tools let you push revocation events when a learner disputes a badge. The tag tools help you segment credentials by cohort or partner. The catch: if your partners aren't set up to verify W3C credentials, you'll spend weeks on integration support. This MCP is the right call when your partners already speak the verifiable credential standard, or when you're willing to invest in that education upfront. Otherwise, stick with a simpler badge API.

API key rotation for security-first startups

When Dock Certs' key management justifies the integration

A 3-person security team at a fintech startup rotates API keys monthly across 8 internal services. They need programmatic key creation, retrieval, and deletion without touching the Dock dashboard. The Create API Key, Retrieve API Key, and Delete API Key tools let them script the rotation in a GitHub Action. The IP allowlist parameter means they can lock keys to specific service IPs. The trade-off: if you're only using Dock Certs for key management and not issuing credentials, you're paying for 12 unused tools. This scenario works when you're already committed to Dock for credential issuance and need the key rotation as a side benefit. If key management is your only need, a secrets manager like Vault is cheaper and more focused.

Frequently asked

What does the Dock Certs MCP do in Switchy?

It connects your Switchy workspace to Dock's verifiable credentials platform. Your team can issue, verify, and manage digital credentials — things like professional certifications, proof of employment, or identity documents — directly through AI conversations. The MCP exposes 15 tools covering credential lifecycle, API key management, webhooks, and tagging. You're essentially automating credential operations without writing code or logging into Dock's dashboard.

Do I need admin access to connect Dock Certs?

You need a Dock account with permission to generate API keys. The MCP uses API key authentication, so whoever connects it must be able to create and manage keys in Dock's settings. If your Dock account restricts API access to certain roles, check with your admin. Once connected, the key's permissions determine what the MCP can do — Switchy inherits whatever scope that key has in Dock.

Can the MCP issue credentials on behalf of my organisation?

Yes, if your Dock API key has issuer permissions. The MCP can create verifiable credentials, delete them, and manage the full lifecycle. It cannot design credential schemas or set up issuer DIDs — you handle that in Dock's platform first. Once the issuer is configured, Switchy can automate the actual issuance and revocation workflows through the MCP's tools.

How does this compare to using Dock's API directly?

The MCP wraps Dock's REST API so your team can issue credentials or set up webhooks in plain English, without writing HTTP requests. You lose some control — the MCP exposes 15 common operations, not Dock's full API surface. If you need advanced schema management or custom verification flows, you'll still hit Dock's API directly. For routine credential ops, the MCP is faster than scripting.

Who on the team should connect this MCP?

Whoever manages your organisation's credential issuance or compliance workflows. That's often a product lead, IT admin, or operations person — not necessarily a developer. They need access to Dock's API key settings and enough context to decide which credentials Switchy should be allowed to issue or revoke. Once connected, any workspace member can use the MCP within Switchy's permission model.

Data last verified 607 hours ago.Sources aggregated hourly to weekly. See docs/architecture/model-directory.md.