Zoho WorkDrive
The Zoho WorkDrive connector lets AI agents browse, upload, move, share, and manage files in team drives. It uses OAuth 2.0 so your credentials are stored encrypted in MCPGate's vault and are never exposed to the AI client.
Required scopes#
MCPGate requests the following OAuth scopes when you connect a Zoho WorkDrive account.
| Scope | Purpose |
|---|---|
| WorkDrive.files.ALL | Full access to read, write, move, share, and delete files |
| WorkDrive.team.READ | Read team and member metadata |
Tool reference#
The Zoho WorkDrive connector exposes 12 tools. Use the MCP Apps page to enable or disable individual tools per app, and the Guardrails page to add fine-grained rules on top.
| Tool | Category | Description |
|---|---|---|
| zohoworkdrive_list_files | read | List files and folders in a Zoho WorkDrive folder |
| zohoworkdrive_get_file | read | Get metadata for a specific file or folder in Zoho WorkDrive |
| zohoworkdrive_read_file | read | Read/download the content of a file from Zoho WorkDrive |
| zohoworkdrive_search | read | Search for files and folders in Zoho WorkDrive |
| zohoworkdrive_get_share_link | read | Get the share link for a file or folder in Zoho WorkDrive |
| zohoworkdrive_upload_file | write | Upload a file to Zoho WorkDrive |
| zohoworkdrive_create_folder | write | Create a new folder in Zoho WorkDrive |
| zohoworkdrive_move_file | write | Move a file or folder to a different location in Zoho WorkDrive |
| zohoworkdrive_copy_file | write | Copy a file or folder in Zoho WorkDrive |
| zohoworkdrive_share_file | write | Share a file or folder with users in Zoho WorkDrive |
| zohoworkdrive_revoke_access | write | Revoke access to a file or folder in Zoho WorkDrive |
| zohoworkdrive_delete_file | delete | Delete a file or folder from Zoho WorkDrive |
Deletion removes the file from all team members
zohoworkdrive_delete_file permanently removes the file or folder from the team drive — it is not moved to a personal trash first. All team members lose access immediately. Deny this tool unless the agent explicitly manages file lifecycle.Common guardrail recipes#
Read-only access#
Apply the read_only preset to enable the five read tools and deny all write and delete tools. Suitable for document search agents that locate and surface files without modifying the drive.
Contribute preset#
Use the contribute preset to enable all tools except zohoworkdrive_delete_file and zohoworkdrive_revoke_access. This lets agents upload files, organise folders, and share documents while protecting against accidental deletion or permission removal.
Full access#
The full_access preset enables all 12 tools. Apply a allow_values guardrail to zohoworkdrive_share_file targeting the email field to restrict which addresses the agent may grant access to.
Troubleshooting#
- Team folder vs My Folder— Zoho WorkDrive separates "Team Folders" (shared) from personal "My Folder" storage. MCPGate operates on Team Folders by default. Ensure the folder IDs passed to tools are from the team drive, not the personal drive.
- File ID after upload —
zohoworkdrive_upload_filereturns the new file's resource ID. Store this ID if you need to move, share, or delete the file in subsequent tool calls within the same agent session. - Share link permissions —
zohoworkdrive_get_share_linkreturns the existing share link. To change link permissions (view-only vs edit), usezohoworkdrive_share_fileto update the sharing settings first.