The Data Masking MCP feature helps MCP clients plan masking requirements into DistSQL and validation steps executable through ShardingSphere-Proxy. Mask rules apply directly to logical columns and do not generate physical derived columns used by the Encrypt feature.
runtimeDatabases should point to Proxy logical databases, not physical storage databases.| Capability | How to call | When to use |
|---|---|---|
database_gateway_plan_mask_rule |
Call through tools/call. |
When a user asks to create, adjust, or drop a masking rule. It creates plan_id, DistSQL, and validation steps. |
database_gateway_apply_workflow |
Call through tools/call with the plan_id returned by planning. |
Preview the plan, execute reviewed artifacts, or export a manual package. |
database_gateway_validate_workflow |
Call through tools/call with the same plan_id. |
After automatic or manual execution, validate rule state, logical metadata, and SQL executability. |
shardingsphere://features/mask/algorithms |
Read through resources/read. |
Before planning, inspect masking algorithm types and required properties visible through Proxy. |
shardingsphere://features/mask/databases/{database}/rules |
Fill {database} and read through resources/read. |
Before altering rules, inspect existing masking rules in the logical database. |
shardingsphere://features/mask/databases/{database}/tables/{table}/rules |
Fill {database} and {table}, then read through resources/read. |
Inspect one table’s masking rules or keep sibling column rules on the same table. |
plan_mask_rule |
Get through prompts/get. |
When a client wants to guide the model to read table metadata, algorithms, and existing rules before calling the planning tool. |
plan_mask_rule completion |
Get candidates through completion/complete. |
Completes database, schema, table, column, algorithm_type, or plan_id. |
For creating or altering a masking rule, the planning tool mainly uses these inputs:
| Argument | Required | Purpose |
|---|---|---|
database |
Required | Logical database name exposed by ShardingSphere-Proxy. |
table |
Required | Logical table to configure. |
column |
Required | Logical column to configure. |
schema |
Optional | Schema or namespace. Recommended for multi-schema logical databases. |
natural_language_intent |
Recommended | Describes the masking target, such as retained phone-number digits or replacement character. MCP uses it to infer planning intent when rule details are not explicit. |
operation_type |
Optional | Rule operation type. Supported values are create, alter, and drop. If omitted, MCP infers it from natural language and existing rules. |
algorithm_type |
Optional | Masking algorithm type. Omit it if you want MCP to recommend one from available algorithms. |
primary_algorithm_properties |
Required by algorithm | Masking algorithm properties, such as retained characters and replacement character. The required properties come from the algorithm resource. |
For dropping a mask rule, provide at least:
databasetablecolumnoperation_type=dropPlanning a masking rule means calling database_gateway_plan_mask_rule.
It creates a reviewable plan only and does not modify the database directly.
{
"jsonrpc": "2.0",
"id": "mask-plan-1",
"method": "tools/call",
"params": {
"name": "database_gateway_plan_mask_rule",
"arguments": {
"database": "<logic-database>",
"table": "orders",
"column": "phone",
"natural_language_intent": "Mask phone as a phone number and keep the first 3 and last 4 characters",
"algorithm_type": "KEEP_FIRST_N_LAST_M",
"primary_algorithm_properties": {
"first-n": "3",
"last-m": "4",
"replace-char": "*"
}
}
}
}
Typical result:
plan_id.status is planned or clarifying.distsql_artifacts contains CREATE/ALTER MASK RULE.ddl_artifacts is normally empty.index_plan is normally empty.If the natural language input does not identify the algorithm clearly or required algorithm properties are missing, MCP returns clarifying.
Continue with the same plan_id and provide fields requested by clarification_questions.
After the planning tool returns plan_id, use the common workflow tools for apply and validation.
Preview first:
{
"name": "database_gateway_apply_workflow",
"arguments": {
"plan_id": "${PLAN_ID}",
"execution_mode": "preview"
}
}
Execute after reviewing artifacts:
{
"name": "database_gateway_apply_workflow",
"arguments": {
"plan_id": "${PLAN_ID}",
"execution_mode": "review-then-execute"
}
}
Validate:
{
"name": "database_gateway_validate_workflow",
"arguments": {
"plan_id": "${PLAN_ID}"
}
}
Validation focuses on:
rule_validationlogical_metadata_validationsql_executability_validation{
"jsonrpc": "2.0",
"id": "mask-drop-1",
"method": "tools/call",
"params": {
"name": "database_gateway_plan_mask_rule",
"arguments": {
"database": "<logic-database>",
"table": "orders",
"column": "phone",
"operation_type": "drop"
}
}
}
If sibling mask columns still exist on the same table, MCP generates ALTER MASK RULE and keeps the sibling rules.
It generates DROP MASK RULE only when no mask column remains on the target table.