Direct answer: DoorVault exposes a read-only MCP endpoint at https://app.doorvault.app/api/mcp/user. Create an owner-AI token in Settings, add it as an Authorization: Bearer header, and your assistant can read household-scoped portfolio facts without any write access.
What It Can Read
| Question | DoorVault Read |
|---|---|
| "List my properties." | Property names, addresses, entities, and linked portfolio details. |
| "What was my P&L this year?" | Split-safe income, expenses, NOI, financing, and net income. |
| "Did my PM payout tie out?" | PM statement versus bank deposit reconciliation, using the same read model as DoorVault's PM vs Bank screen. |
| "What needs my attention?" | Open Night Watch and Action Center items, highest severity first. |
| "What should I send my CPA?" | Schedule E summary by property and portfolio. |
What It Cannot Do
- It cannot create, edit, approve, delete, or reclassify records.
- It cannot move money, initiate payments, or contact a property manager.
- It cannot read another household or any PM Portal account.
- It cannot reveal the token again after creation. DoorVault stores only the hash.
Setup
- Open DoorVault Settings, Integrations, then API.
- Under "Connect your AI", create a token and copy the snippet immediately.
- Add the endpoint and bearer token to an MCP-compatible assistant.
- Ask a read-only portfolio question, for example: "List my properties" or "Did my PM payouts tie out this month?"
{
"doorvault_owner_ai": {
"endpoint": "https://app.doorvault.app/api/mcp/user",
"authorization": "Bearer dvai_your_token_here"
}
}
Audit Trail
DoorVault logs every owner-AI tool call with the token id, tool name, timestamp, IP address, and success status. The raw token is never stored.