IBM
diff --git a/‎docs/docs/api/plugin-bindings-api.md‎
Lines changed: 34 additions & 2 deletions b/‎docs/docs/api/plugin-bindings-api.md‎
Lines changed: 34 additions & 2 deletions
diff --git a/‎mcpgateway/alembic/versions/d3e4f5a6b7c8_add_binding_reference_id_to_tool_plugin_bindings.py‎
Lines changed: 70 additions & 0 deletions b/‎mcpgateway/alembic/versions/d3e4f5a6b7c8_add_binding_reference_id_to_tool_plugin_bindings.py‎
Lines changed: 70 additions & 0 deletions
diff --git a/‎mcpgateway/db.py‎
Lines changed: 3 additions & 0 deletions b/‎mcpgateway/db.py‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎mcpgateway/routers/tool_plugin_bindings.py‎
Lines changed: 54 additions & 8 deletions b/‎mcpgateway/routers/tool_plugin_bindings.py‎
Lines changed: 54 additions & 8 deletions
@@ -54,6 +54,8 @@ Non-admin callers may only create bindings for teams they belong to. Attempting
 - **Updated in place** if a row already exists (the `id`, `created_at`, and `created_by` are preserved).
 - **Inserted** if no matching row exists.
 
+**Stale tool pruning**: when a policy includes a `binding_reference_id`, any existing binding that shares the same `binding_reference_id` and `plugin_id` but whose `tool_name` is **not** in the incoming `tool_names` list is automatically deleted. This keeps the stored state in sync when an external system sends a full replacement tool list on an update event.
+
 On success, returns **all created/updated** bindings and immediately invalidates the in-process plugin cache so the new config takes effect on the very next tool call.
 
 #### Request body
@@ -68,6 +70,7 @@ On success, returns **all created/updated** bindings and immediately invalidates
           "plugin_id": "<PLUGIN_ID>",
           "mode": "enforce | permissive | disabled",
           "priority": 10,
+          "binding_reference_id": "<EXTERNAL_BINDING_ID>",
           "config": { /* plugin-specific — see below */ }
         }
       ]
@@ -84,6 +87,7 @@ On success, returns **all created/updated** bindings and immediately invalidates
 | `policies[].plugin_id`      | enum string     | ✅        | —          | `OUTPUT_LENGTH_GUARD`, `RATE_LIMITER`, or `SECRETS_DETECTION`      |
 | `policies[].mode`           | enum string     | ❌        | `enforce`  | `enforce` = fail on violation; `permissive` = log only; `disabled` = skip |
 | `policies[].priority`       | int (1–1000)    | ❌        | `50`       | Lower runs first                                                    |
+| `policies[].binding_reference_id` | string   | ❌        | `null`     | External reference ID for correlating this binding with an upstream system. Used for stale-tool pruning on update and bulk delete. |
 | `policies[].config`         | object          | ✅        | —          | All config fields for the plugin must be present (full replace, no partial patch) |
 
 #### `mode` semantics
@@ -102,9 +106,18 @@ On success, returns **all created/updated** bindings and immediately invalidates
 
 List all bindings across all teams (admin use).
 
+| Query param            | Type   | Required | Description                                          |
+|------------------------|--------|----------|------------------------------------------------------|
+| `binding_reference_id` | string | ❌        | Filter — return only bindings with this reference ID |
+
 ```bash
+# All bindings
 curl -s -H "Authorization: Bearer $TOKEN" \
   http://<GATEWAY_HOST>:<GATEWAY_PORT>/v1/tools/plugin_bindings | jq
+
+# Filtered by external reference ID
+curl -s -H "Authorization: Bearer $TOKEN" \
+  "http://<GATEWAY_HOST>:<GATEWAY_PORT>/v1/tools/plugin_bindings?binding_reference_id=<EXTERNAL_REFERENCE_ID>" | jq
 ```
 
 ---
@@ -113,14 +126,32 @@ curl -s -H "Authorization: Bearer $TOKEN" \
 
 List all bindings for a specific team.
 
+| Query param            | Type   | Required | Description                                                                                          |
+|------------------------|--------|----------|------------------------------------------------------------------------------------------------------|
+| `binding_reference_id` | string | ❌        | If provided, **takes precedence over `team_id`** — returns all bindings with this reference ID across all teams |
+
 ```bash
+# All bindings for a team
 curl -s -H "Authorization: Bearer $TOKEN" \
   http://<GATEWAY_HOST>:<GATEWAY_PORT>/v1/tools/plugin_bindings/<YOUR_TEAM_ID> | jq
+
+# Filtered by external reference ID (team_id is ignored when binding_reference_id is present)
+curl -s -H "Authorization: Bearer $TOKEN" \
+  "http://<GATEWAY_HOST>:<GATEWAY_PORT>/v1/tools/plugin_bindings/<YOUR_TEAM_ID>?binding_reference_id=<EXTERNAL_REFERENCE_ID>" | jq
 ```
 
 ---
 
-### `DELETE /v1/tools/plugin_bindings/{binding_id}`
+### `DELETE /v1/tools/plugin_bindings?binding_reference_id={ref}`
+
+Delete **all** bindings tagged with the given external reference ID. Intended for external systems that need to remove all bindings associated with one of their own reference objects without knowing the internal ContextForge UUIDs.
+
+Returns the deleted records. Returns an empty list (not an error) if no bindings matched.
+
+```bash
+curl -s -X DELETE \
+  -H "Authorization: Bearer $TOKEN" \
+  "http://<GATEWAY_HOST>:<GATEWAY_PORT>/v1/tools/plugin_bindings?binding_reference_id=<EXTERNAL_REFERENCE_ID>" | jq
 
 Delete a single binding by its UUID. Returns the deleted record.
 
@@ -152,6 +183,7 @@ All write operations (`POST`, `DELETE`) and read operations (`GET`) return the s
     "strategy": "truncate",
     "ellipsis": "..."
   },
+  "binding_reference_id": "<EXTERNAL_REFERENCE_ID>",
   "created_at": "2026-04-07T17:00:00Z",
   "created_by": "admin@example.com",
   "updated_at": "2026-04-07T17:05:00Z",
@@ -456,7 +488,7 @@ curl -s -X POST \
 | `400`       | Invalid request payload (missing fields, bad config values)              |
 | `401`       | Missing or invalid Bearer token                                          |
 | `403`       | Caller lacks `tools.manage_plugins` or configuring bindings for a team they don't belong to |
-| `404`       | Binding ID not found (DELETE only)                                       |
+| `404`       | Binding ID not found (DELETE `/{binding_id}` only)                       |
 
 ### Example 400 — bad `OUTPUT_LENGTH_GUARD` config
 
 
@@ -0,0 +1,70 @@
+# -*- coding: utf-8 -*-
+"""Add binding_reference_id to tool_plugin_bindings.
+
+Revision ID: d3e4f5a6b7c8
+Revises: c2d3e4f5a6b7
+Create Date: 2026-04-10
+"""
+
+# Standard
+from typing import Sequence, Union
+
+# Third-Party
+import sqlalchemy as sa
+from alembic import op
+
+# revision identifiers, used by Alembic.
+revision: str = "d3e4f5a6b7c8"  # pragma: allowlist secret
+down_revision: Union[str, Sequence[str], None] = "c2d3e4f5a6b7"  # pragma: allowlist secret
+branch_labels: Union[str, Sequence[str], None] = None
+depends_on: Union[str, Sequence[str], None] = None
+
+
+def upgrade() -> None:
+    """Add nullable binding_reference_id column and index to tool_plugin_bindings."""
+    bind = op.get_bind()
+    inspector = sa.inspect(bind)
+
+    # Skip if table doesn't exist (fresh DB uses db.py models directly)
+    if "tool_plugin_bindings" not in inspector.get_table_names():
+        return
+
+    # Skip if column already exists (idempotent re-run guard)
+    columns = [col["name"] for col in inspector.get_columns("tool_plugin_bindings")]
+    if "binding_reference_id" not in columns:
+        op.add_column(
+            "tool_plugin_bindings",
+            sa.Column("binding_reference_id", sa.String(255), nullable=True),
+        )
+
+    # Add index only if it doesn't already exist
+    indexes = [idx["name"] for idx in inspector.get_indexes("tool_plugin_bindings")]
+    if "ix_tool_plugin_bindings_binding_reference_id" not in indexes:
+        op.create_index(
+            "ix_tool_plugin_bindings_binding_reference_id",
+            "tool_plugin_bindings",
+            ["binding_reference_id"],
+        )
+
+
+def downgrade() -> None:
+    """Remove binding_reference_id column and index from tool_plugin_bindings."""
+    bind = op.get_bind()
+    inspector = sa.inspect(bind)
+
+    # Skip if table doesn't exist
+    if "tool_plugin_bindings" not in inspector.get_table_names():
+        return
+
+    # Drop index if it exists
+    indexes = [idx["name"] for idx in inspector.get_indexes("tool_plugin_bindings")]
+    if "ix_tool_plugin_bindings_binding_reference_id" in indexes:
+        op.drop_index(
+            "ix_tool_plugin_bindings_binding_reference_id",
+            table_name="tool_plugin_bindings",
+        )
+
+    # Drop column if it exists
+    columns = [col["name"] for col in inspector.get_columns("tool_plugin_bindings")]
+    if "binding_reference_id" in columns:
+        op.drop_column("tool_plugin_bindings", "binding_reference_id")
@@ -6578,6 +6578,7 @@ class ToolPluginBinding(Base):
         mode (str): ``"enforce"`` | ``"permissive"`` | ``"disabled"``.
         priority (int): Execution priority — lower numbers run first.
         config (dict): Plugin-specific JSON configuration blob.
+        binding_reference_id (str): Optional external reference ID for bulk delete and stale-tool pruning.
         created_at (datetime): Row creation timestamp (UTC).
         created_by (str): Email of the user who created the binding.
         updated_at (datetime): Last update timestamp (UTC).
@@ -6608,6 +6609,7 @@ class ToolPluginBinding(Base):
     mode: Mapped[str] = mapped_column(String(20), nullable=False, default="enforce")
     priority: Mapped[int] = mapped_column(Integer, nullable=False, default=50)
     config: Mapped[Dict[str, Any]] = mapped_column(JSON, nullable=False, default=dict)
+    binding_reference_id: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
     created_at: Mapped[datetime] = mapped_column(DateTime(timezone=True), default=utc_now, nullable=False)
     created_by: Mapped[str] = mapped_column(String(255), nullable=False)
     updated_at: Mapped[datetime] = mapped_column(DateTime(timezone=True), default=utc_now, onupdate=utc_now, nullable=False)
@@ -6620,6 +6622,7 @@ class ToolPluginBinding(Base):
         UniqueConstraint("team_id", "tool_name", "plugin_id", name="uq_tool_plugin_binding"),
         Index("ix_tool_plugin_bindings_team_id", "team_id"),
         Index("ix_tool_plugin_bindings_tool_name", "tool_name"),
+        Index("ix_tool_plugin_bindings_binding_reference_id", "binding_reference_id"),
     )
 
     def __repr__(self) -> str:
 
@@ -8,17 +8,18 @@
 Provides endpoints for configuring per-tool per-tenant plugin policies.
 
 Endpoints:
-    POST   /v1/tools/plugin_bindings          — Create or update bindings (upsert)
-    GET    /v1/tools/plugin_bindings           — List all bindings
-    GET    /v1/tools/plugin_bindings/{team_id} — List bindings for a specific team
-    DELETE /v1/tools/plugin_bindings/{id}      — Delete a binding by ID
+    POST   /v1/tools/plugin_bindings                              — Create or update bindings (upsert)
+    GET    /v1/tools/plugin_bindings                              — List all bindings
+    GET    /v1/tools/plugin_bindings/{team_id}                    — List bindings for a specific team
+    DELETE /v1/tools/plugin_bindings?binding_reference_id={ref}   — Delete all bindings by external reference ID
+    DELETE /v1/tools/plugin_bindings/{id}                         — Delete a binding by UUID
 """
 
 # Standard
-from typing import Any, Dict
+from typing import Any, Dict, List, Optional
 
 # Third-Party
-from fastapi import APIRouter, Depends, HTTPException, status
+from fastapi import APIRouter, Depends, HTTPException, Query, status
 from sqlalchemy.orm import Session
 
 # First-Party
@@ -107,12 +108,14 @@ async def upsert_tool_plugin_bindings(
 @router.get("/", response_model=ToolPluginBindingListResponse)
 @require_permission("tools.read")
 async def list_tool_plugin_bindings(
+    binding_reference_id: Optional[str] = None,
     current_user_ctx: Dict[str, Any] = Depends(get_current_user_with_permissions),
     db: Session = Depends(get_db),
 ) -> ToolPluginBindingListResponse:
     """List all tool plugin bindings across all teams.
 
     Args:
+        binding_reference_id: Optional filter — return only bindings with this reference ID.
         current_user_ctx: Authenticated user context.
         db: Database session.
 
@@ -124,7 +127,7 @@ async def list_tool_plugin_bindings(
         >>> asyncio.iscoroutinefunction(list_tool_plugin_bindings)
         True
     """
-    bindings = _service.list_bindings(db, team_id=None)
+    bindings = _service.list_bindings(db, team_id=None, binding_reference_id=binding_reference_id)
     return ToolPluginBindingListResponse(bindings=bindings, total=len(bindings))
 
 
@@ -137,13 +140,15 @@ async def list_tool_plugin_bindings(
 @require_permission("tools.read")
 async def list_tool_plugin_bindings_for_team(
     team_id: str,
+    binding_reference_id: Optional[str] = None,
     current_user_ctx: Dict[str, Any] = Depends(get_current_user_with_permissions),
     db: Session = Depends(get_db),
 ) -> ToolPluginBindingListResponse:
     """List all tool plugin bindings for a specific team.
 
     Args:
         team_id: Team identifier to filter by.
+        binding_reference_id: Optional filter — return only bindings with this reference ID.
         current_user_ctx: Authenticated user context.
         db: Database session.
 
@@ -155,10 +160,51 @@ async def list_tool_plugin_bindings_for_team(
         >>> asyncio.iscoroutinefunction(list_tool_plugin_bindings_for_team)
         True
     """
-    bindings = _service.list_bindings(db, team_id=team_id)
+    bindings = _service.list_bindings(db, team_id=team_id, binding_reference_id=binding_reference_id)
     return ToolPluginBindingListResponse(bindings=bindings, total=len(bindings))
 
 
+# ---------------------------------------------------------------------------
+# DELETE / — remove all bindings by external reference ID
+# ---------------------------------------------------------------------------
+
+
+@router.delete("/", response_model=ToolPluginBindingListResponse, status_code=status.HTTP_200_OK)
+@require_permission("tools.manage_plugins")
+async def delete_tool_plugin_bindings_by_reference(
+    binding_reference_id: str = Query(..., min_length=1, description="External reference ID whose bindings to delete"),
+    current_user_ctx: Dict[str, Any] = Depends(get_current_user_with_permissions),
+    db: Session = Depends(get_db),
+) -> ToolPluginBindingListResponse:
+    """Delete all bindings associated with an external reference ID.
+
+    Intended for use by external systems that need to remove all ContextForge
+    bindings tied to one of their own reference objects without knowing the
+    internal ContextForge UUIDs.
+
+    Returns the deleted records (empty list if none matched — not an error).
+
+    Args:
+        binding_reference_id: The external reference ID whose bindings to delete.
+        current_user_ctx: Authenticated user context.
+        db: Database session.
+
+    Returns:
+        ToolPluginBindingListResponse: All deleted binding records.
+
+    Examples:
+        >>> import asyncio
+        >>> asyncio.iscoroutinefunction(delete_tool_plugin_bindings_by_reference)
+        True
+    """
+    deleted: List[ToolPluginBindingResponse] = _service.delete_bindings_by_reference(db, binding_reference_id)
+    db.commit()
+    # Invalidate cache for every affected (team_id, tool_name) pair.
+    for ctx_id in {make_context_id(b.team_id, b.tool_name) for b in deleted}:
+        await reload_plugin_context(ctx_id)
+    return ToolPluginBindingListResponse(bindings=deleted, total=len(deleted))
+
+
 # ---------------------------------------------------------------------------
 # DELETE /{id} — remove a binding by its UUID
 # ---------------------------------------------------------------------------