Can I restrict ChatGPT to only read Terraform Cloud state without applying infrastructure changes?

Yes. When generating the MCP server URL, you can apply method filtering (e.g., methods: ["read"]) to ensure the LLM is physically incapable of invoking state-mutating endpoints like create, update, or apply.

How does the MCP server handle Terraform Cloud's complex JSON:API relationships?

Truto automatically flattens and normalizes Terraform Cloud's nested JSON:API relationship payloads into standard JSON schema properties, ensuring the LLM understands exactly which IDs map to which workspace, organization, or run.

Connect Hashicorp Terraform Cloud to ChatGPT: Control Orgs and Projects

DevOps and Platform Engineering teams spend an inordinate amount of time context-switching between code editors, issue trackers, and the Hashicorp Terraform Cloud (TFC) console. When a pipeline fails due to a locked state, or a developer needs a quick audit of Sentinel policies across 50 workspaces, digging through the TFC UI is a massive bottleneck. Giving a Large Language Model (LLM) like ChatGPT secure, API-level access to your Terraform Cloud instance solves this. If your team uses Claude, check out our guide on connecting Hashicorp Terraform Cloud to Claude or explore our broader architectural overview on connecting Hashicorp Terraform Cloud to AI Agents.

Connecting ChatGPT to Hashicorp Terraform Cloud requires translating LLM tool calls into strict REST API requests using a Model Context Protocol (MCP) server. You can either spend weeks building, hosting, and maintaining a custom MCP server, or you can use a managed infrastructure layer to dynamically generate a secure, authenticated MCP server URL in seconds. This guide breaks down exactly how to use Truto to generate an MCP server for Hashicorp Terraform Cloud, wire it into ChatGPT, and execute complex infrastructure workflows using natural language.

The Engineering Reality of the Hashicorp Terraform Cloud API

A custom MCP server is a self-hosted integration layer. While the open MCP standard provides a predictable way for models to discover tools, the reality of implementing it against HashiCorp's API is painful. You are not just building simple CRUD wrappers - you are interfacing with a highly asynchronous, strictly typed infrastructure control plane. If you decide to build a custom MCP server for TFC, you own the entire API lifecycle. Here are the specific integration challenges that break standard assumptions when working with Hashicorp Terraform Cloud:

The JSON:API Specification Labyrinth Unlike standard REST APIs that accept flat JSON payloads, Hashicorp Terraform Cloud strictly adheres to the JSON:API specification. To create a run or update a workspace, you cannot simply send { "workspace_id": "ws-123", "message": "Deploying" }. You must wrap payloads in data, specify the exact type (e.g., runs, workspaces), and nest linked entities under relationships. If your custom MCP server exposes this raw structure to ChatGPT, the LLM will constantly hallucinate the nesting hierarchy and fail to construct valid request bodies.

Asynchronous Run Lifecycles Applying infrastructure in TFC is not a single API call. It is a state machine. You must first create a run. That run enters a pending state, transitions to planning, and eventually becomes planned. Only then can you call the apply endpoint on that specific run ID. If you expect ChatGPT to "deploy the infrastructure," your MCP server must expose discrete tools for each phase of the lifecycle and teach the LLM how to poll or sequentially chain these tools based on the run's status.

State File Retrieval and Ephemeral URLs Retrieving a state version is not a direct download. When you request a state version from the TFC API, it returns a temporary, short-lived URL hosted on an external blob store. The LLM cannot natively follow redirects or stream binary blob data directly. Your MCP layer must abstract this two-step process if you want the LLM to analyze raw state outputs.

Rate Limits and 429 Exits Hashicorp Terraform Cloud enforces rate limits (often 30 requests per second per IP or user). When an AI agent attempts to iterate through 100 workspaces to check compliance, it will hit this ceiling.

Factual note on rate limits: Truto does not retry, throttle, or apply backoff on rate limit errors. When the upstream Terraform Cloud API returns an HTTP 429, Truto passes that error directly to the caller. Truto normalizes the upstream rate limit information into standardized headers (ratelimit-limit, ratelimit-remaining, ratelimit-reset) per the IETF specification. The caller (the AI agent framework or the custom client) is strictly responsible for interpreting these headers and executing its own retry and exponential backoff logic.

How to Generate a Managed MCP Server for Hashicorp Terraform Cloud

Instead of building custom JSON:API parsers and maintaining OAuth flows, you can use Truto to dynamically generate a fully managed MCP server. This server is scoped specifically to your connected Hashicorp Terraform Cloud account.

There are two ways to generate your MCP server: via the Truto UI, or programmatically via the API.

Method 1: Generating the MCP Server via the Truto UI

For platform engineers doing manual setups or one-off agent testing, the UI is the fastest path.

Log into your Truto dashboard and navigate to the integrated account page for your Hashicorp Terraform Cloud connection.
Click the MCP Servers tab.
Click Create MCP Server.
Configure the server. You can name it "ChatGPT TFC Prod Admin" and select specific method filters (e.g., restricting the server to read operations if you only want ChatGPT to audit state).
Click Create and copy the generated MCP server URL (e.g., https://api.truto.one/mcp/abc123xyz...).

Method 2: Generating the MCP Server via the API

If you are provisioning AI agents dynamically as part of your internal developer platform (IDP), you should automate this via the Truto REST API. The API validates the integration, provisions a cryptographically hashed token in a distributed key-value store, and returns a ready-to-use endpoint.

Make a POST request to /integrated-account/:id/mcp:

curl -X POST https://api.truto.one/integrated-account/<your_tfc_account_id>/mcp \
  -H "Authorization: Bearer <your_truto_api_key>" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "DevOps ChatGPT Assistant",
    "config": {
      "methods": ["read", "write", "custom"]
    },
    "expires_at": "2026-12-31T23:59:59Z"
  }'

The response will include the exact URL ChatGPT needs to connect, fully authenticated and scoped to your rules:

{
  "id": "mcp_8a9b0c...",
  "name": "DevOps ChatGPT Assistant",
  "config": { "methods": ["read", "write", "custom"] },
  "expires_at": "2026-12-31T23:59:59Z",
  "url": "https://api.truto.one/mcp/a1b2c3d4e5f6g7h8i9j0..."
}

How to Connect the MCP Server to ChatGPT

Once you have the Truto MCP server URL, passing it to ChatGPT is a zero-code operation. Because the token in the URL handles routing and authentication, you do not need to configure OAuth or API keys inside OpenAI.

Method A: Connecting via the ChatGPT UI

For enterprise users on Plus, Team, or Enterprise plans utilizing custom GPTs or the standard interface:

Open ChatGPT and navigate to Settings -> Apps -> Advanced settings.
Enable Developer mode (required for MCP support).
Under MCP servers / Custom connectors, click Add new server.
Name: Enter a recognizable label like "Terraform Cloud (Truto)".
Server URL: Paste the URL generated in the previous step.
Save the configuration.

ChatGPT will immediately execute an MCP handshake (initialize), discover all allowed Terraform Cloud tools, and return a notifications/initialized response. Your agent is now live.

Method B: Connecting via Manual Configuration File

If you are running a local ChatGPT-compatible agent framework (like Cursor, Cline, or an internal LangGraph setup using OpenAI models), you can define the server in your local MCP configuration file (mcp_config.json). Truto supports Server-Sent Events (SSE) for remote transport.

{
  "mcpServers": {
    "terraform-cloud": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-sse",
        "https://api.truto.one/mcp/a1b2c3d4e5f6g7h8i9j0..."
      ]
    }
  }
}

Restart your agent framework, and the tools will be instantly injected into the model's context window.

Hero Tools for Hashicorp Terraform Cloud

Truto automatically generates precise, JSON Schema-backed tools derived directly from the Hashicorp Terraform Cloud integration documentation. This flattens the complex JSON:API structure so the LLM knows exactly what to pass. Here are the highest-leverage operations your AI agent can now execute.

list_all_hashicorp_terraform_cloud_workspaces

Retrieves a complete list of workspaces within a specific organization. This is the foundational discovery tool the LLM uses to map workspace names to their underlying IDs, which are required for almost all subsequent operations.

"I need to find the workspace ID for our 'prod-database-cluster' in the 'acme-corp' organization. Can you list all workspaces and find it?"

get_single_hashicorp_terraform_cloud_current_state_version_by_id

Fetches the active state version for a specific workspace. This is critical for auditing what is actually deployed, checking outputs, and verifying the Terraform version used during the last successful apply.

"Pull the current state version for workspace ws-98765. I need to know the exact terraform-version it was compiled with and extract the 'database_url' from the state outputs."

create_a_hashicorp_terraform_cloud_run

Initiates a new run (plan and apply) for a workspace. The LLM can pass parameters to specify if it is a plan-only run, attach an optional message, or target specific resources.

"Trigger a new run for the 'frontend-cdn' workspace. Set the message to 'Routine certificate rotation triggered via AI ops' and make it a plan-only run so I can review it first."

hashicorp_terraform_cloud_runs_apply

Executes the apply phase for a run that has successfully completed planning and is waiting in a planned or cost_estimated state.

"The plan for run-12345 looks correct and within budget. Go ahead and apply that run to provision the infrastructure."

hashicorp_terraform_cloud_workspaces_force_unlock

Administratively unlocks a workspace that is stuck. When a Terraform apply fails catastrophically or a connection drops, the state lock remains in place. This tool allows the AI to remediate stalled pipelines instantly.

"Our CI/CD pipeline just failed because the 'core-network' workspace is locked. Please force unlock workspace ws-112233 so the pipeline can proceed."

list_all_hashicorp_terraform_cloud_organization_policies

Retrieves all Sentinel policies enforced at the organization level. This allows the AI agent to audit compliance rules, check enforcement levels (hard-mandatory vs soft-mandatory), and review policy descriptions.

"List all the organization policies for 'acme-corp'. I need a summary of any policies that are set to 'hard-mandatory' regarding AWS S3 bucket encryption."

To view the complete inventory of available API endpoints, request schemas, and data models for this integration, visit the Hashicorp Terraform Cloud integration page.

Workflows in Action

Exposing individual tools to ChatGPT is powerful, but the true value of an MCP server emerges when the LLM chains these tools together to resolve complex DevOps incidents or conduct automated audits.

Scenario 1: Resolving a Stuck Deployment Pipeline

The User Prompt:

"Our deployment to the 'payment-gateway' workspace in the 'acme-corp' org keeps failing because it says the state is locked. Find the workspace, unlock it, and trigger a fresh run with the message 'AI auto-recovery'."

The Execution:

Discovery: ChatGPT calls list_all_hashicorp_terraform_cloud_workspaces with the organization name acme-corp. It scans the returned array, finds the workspace named payment-gateway, and extracts its ID (ws-445566).
Remediation: It calls hashicorp_terraform_cloud_workspaces_force_unlock passing the extracted ws-445566 ID. The API returns a successful unlock confirmation.
Redeployment: Finally, it calls create_a_hashicorp_terraform_cloud_run, passing the workspace ID and the message "AI auto-recovery".
Result: ChatGPT replies to the engineer: "I found the payment-gateway workspace (ws-445566) and successfully force-unlocked it. I have initiated a new run. The run ID is run-778899 and it is currently in the 'pending' state. Let me know if you want me to monitor the plan."

Scenario 2: Auditing State Outputs for Security Compliance

The User Prompt:

"I need to audit the 'internal-vpn' workspace in 'acme-corp'. Get the current state version and check the state outputs to ensure the 'vpn_encryption_algorithm' is set to 'AES-256'."

The Execution:

Discovery: ChatGPT uses list_all_hashicorp_terraform_cloud_workspaces to locate the internal-vpn workspace and grabs the ID.
State Retrieval: It calls get_single_hashicorp_terraform_cloud_current_state_version_by_id using the workspace ID.
Output Analysis: The LLM parses the nested JSON payload returned by Truto, specifically looking at the outputs object. It locates the vpn_encryption_algorithm key.
Result: ChatGPT replies: "I pulled the current state for the internal-vpn workspace. The output variable 'vpn_encryption_algorithm' is currently set to 'AES-128', which violates your requirement for 'AES-256'. Would you like me to draft a variable update or trigger a new run with updated variables?"

Security and Access Control

Giving an AI agent raw API keys to Hashicorp Terraform Cloud is a massive security risk. Truto's MCP server architecture is designed around least-privilege principles, allowing you to tightly control exactly what ChatGPT can and cannot do.

Method Filtering: Enforce strict CRUD limits. By setting methods: ["read"] during server creation, you strip out tools like create_a_hashicorp_terraform_cloud_run and hashicorp_terraform_cloud_workspaces_force_unlock, guaranteeing the LLM is physically incapable of modifying infrastructure.
Tag Filtering: Group specific integration resources by tag. You can restrict an MCP server to only expose tools related to workspaces and runs, actively hiding endpoints related to ssh-keys or organization-tokens.
Secondary Authentication (require_api_token_auth): Enable this flag to require the client (or human operator behind the agent) to supply a valid Truto API token in the Authorization header. This ensures that a leaked MCP URL is useless on its own.
Automatic Expiration (expires_at): Issue time-boxed access. Define an ISO timestamp, and the underlying edge infrastructure will automatically sever the cryptographic token and delete the server when time is up - perfect for granting an AI agent temporary access during an active incident bridge.

Wrapping Up

Integrating Hashicorp Terraform Cloud with ChatGPT transforms how your DevOps and platform engineering teams interact with infrastructure. Instead of treating TFC as an isolated console, you turn it into a conversational, agentic workflow. By leveraging Truto's managed MCP server, you bypass the friction of building custom JSON:API parsers, managing temporary state URLs, and handling complex entity relationships.

Your engineers can focus on architecture, while ChatGPT handles the operational toil of unlocking states, auditing policies, and triggering runs.