Features
Complete reference of capabilities exposed by the Axiory.ai MCP Server. Nineteen tools, twelve resources, and three prompts — accessible through natural language to any compatible AI agent.
Trading Operations
Order placement, position management, and trade lifecycle from natural language commands.
| Feature | Details |
|---|---|
| Market Orders | Instant execution at current market price. Supported on all asset classes. |
| Limit Orders | Buy below / sell above a specified price. GTC, IOC, or FOK time-in-force. |
| Stop Orders | Trigger a market order when price reaches the stop level. |
| Stop-Loss (SL) | Linked STOP order that closes a position when price moves against you. |
| Take-Profit (TP) | Linked LIMIT order that locks in gains when your target price is reached. |
| Close Position | Close any open position by ID, full or partial volume. |
| Close All Positions | Close every open position across all asset classes in one call. |
Supported asset classes
FX (Forex)IndicesCryptoCommoditiesStocks
Safety & Risk Management
Eight automated checks per trade, plus account-level kill switches and agent safety instructions.
| Feature | Details |
|---|---|
| Per-asset-class position limits | Separate max notional limits for FX, Indices, Crypto, Commodities, and Stocks. |
| Max open positions | Cap the total number of simultaneously open positions (default: 20). |
| Daily loss kill switch | Halts all trading for the session when realized losses exceed your daily limit. Resets at 17:00 EST. |
| Order rate throttling | Limits orders per minute to prevent runaway agent loops. |
| Paper mode | All risk checks run but no orders are sent to the broker. Full journal logging. |
| OCO auto-cancel | When a position closes, linked SL/TP pending orders are automatically cancelled. |
| Calculation safety instructions | The server instructs every AI agent to show volume calculations step-by-step and request user confirmation before trading. |
| Destructive tool annotations | Trading tools are marked destructive + non-idempotent in the MCP protocol. Clients may require explicit approval flows. |
Risk limits are set at connection time via the OAuth form. To change them, use reset_session from your AI agent or disconnect and re-authorize.
Infrastructure & Security
Cloud-hosted, multi-tenant architecture with defence-in-depth security.
| Feature | Details |
|---|---|
| OAuth 2.1 authentication | Browser-based credential entry. Access tokens expire in 1 hour; refresh tokens in 7 days. Auto-renewal by the MCP client. |
| AES-256-GCM credential encryption | Credentials are encrypted per-tenant using HKDF-derived keys. Never stored in plaintext. |
| Token Portal (fallback auth) | 30-day Bearer tokens for clients that cannot complete the OAuth browser redirect flow. |
| Brute-force lockout | 5 consecutive failed credential attempts trigger a 15-minute lockout. |
| Credential validation at connect | FIX credentials are validated against the broker before any token is issued. Wrong password = immediate error on form. |
| SSRF allowlist | Only explicitly configured broker hostnames are permitted. Private/loopback IPs are always blocked. |
| Multi-tenant isolation | Each session has its own FIX connection, risk guard, state, and journal. No cross-tenant data leakage. |
| Append-only audit journal | All trades are written to a JSONL journal on disk. Survives session restarts and reconnects. |
| Cloud-hosted on AWS Fargate | No local installation required. Connects over HTTPS. Managed infrastructure. |
Ready to connect?
Start with paper mode to verify the connection and test your prompts, then switch to live when you're confident.