Your agent’s internet.

Authenticated access to 40+ APIs. Zero credential exposure. Policies, spend limits, webhooks, delegation — one interface. MCP, SDK, or HTTP.

The agent loop

Resolve

Describe what you want to do. Authgent maps the intent to the right connected provider and returns the method and path.

Execute

Make the API call. Credentials are injected automatically. Token refresh, rate limiting, and retries are handled. You never see or handle raw keys.

React

Pull webhook events captured 24/7, or poll on a schedule. Policies and spend limits are enforced on every operation. Acknowledge events when processed.

Quickstart

# Python
from authgent_ai import Agent

agent = Agent(agent_token="agt_...")

# Resolve: what API handles this intent?
matches = agent.resolve("list my open pull requests")

# Execute: call the API (credentials injected automatically)
resp = agent.call(
    provider="github",
    method="GET",
    path="/user/repos"
)

# React: pull any webhook events
events = agent.events(provider="github")
agent.ack_events([e["key"] for e in events])

// TypeScript
import { Agent } from "authgent-ai";

const agent = new Agent({ agentToken: "agt_..." });

// One-line API call — zero credential handling
const resp = await agent.call({
  provider: "slack",
  method: "POST",
  path: "/chat.postMessage",
  body: { channel: "#ops", text: "Deploy complete." }
});

Integration options

MCP Server

22 tools

For Claude Code, Cursor, Windsurf, and any MCP-compatible client. Add to your MCP config and every tool is available immediately.

Python SDK

pip install authgent-ai

Sync and async. One import, one constructor. Mirrors the full API surface.

Node.js SDK

npm install authgent-ai

Zero dependencies, native fetch. TypeScript types included.

HTTP API

33 endpoints

Bearer token auth. JSON in, JSON out. Works with any language, any framework, any model.

Capabilities

Proxy API calls

Call any connected provider's API. Credentials are injected per-request. Automatic token refresh, rate limit handling, and exponential backoff retries.

Intent resolution

Describe what you want to do in natural language. Authgent returns the matching provider, method, and path from your connected services.

Webhook events

Subscribe to provider events. A 24/7 inbox captures webhooks even when you're offline. Pull events, filter by provider, acknowledge when processed.

Scheduled polling

Set recurring API calls on intervals from 5 minutes to 24 hours. Results appear as events. Policies and spend limits enforced on every execution.

Action policies

Allow or deny specific actions per provider, method, and path pattern. Applied before every upstream request. Admin-key protected.

Spend limits

Cap spend per call, per day, or per month per provider. Enforced atomically before upstream execution. Admin-key protected.

Agent-to-agent delegation

Create scoped, time-limited tokens for sub-agents. Parent policies and spend limits cascade. Revoke any delegation instantly.

Usage tracking

Real-time view of calls, spend, remaining budget, active delegations, schedules, and webhooks. Per-agent and per-provider breakdown.

API surface

POST/v1/proxyCall a provider API

POST/v1/resolveIntent-based provider routing

POST/v1/oauth/connectStart OAuth connection

GET/v1/oauth/providersList available providers

POST/v1/listenSubscribe to webhook events

POST/v1/eventsPull captured events

POST/v1/events/ackAcknowledge processed events

POST/v1/unlistenUnsubscribe from events

POST/v1/delegateCreate scoped sub-agent token

POST/v1/delegationsList active delegations

POST/v1/delegations/revokeRevoke a delegation

POST/v1/schedulesCreate a scheduled poll

POST/v1/schedules/listList active schedules

POST/v1/schedules/deleteRemove a schedule

POST/v1/usageGet usage and spend data

Built-in providers

40+ OAuth providers ready to connect. Or bring your own OAuth app credentials.

googleslackgithubstripenotion linearsalesforcehubspotjiraconfluence discordtwitterspotifydropboxfigma shopifyzoomasanatrelloairtable mailchimpsendgridtwilioquickbooksxero calendlyintercomzendeskclickupmonday gitlabbitbucketazure-devopsawsgcp redditlinkedinfacebookinstagramtiktok

Security guarantees

Zero-custody: credentials are never exposed to the agent, the user, or the operator
Hardware-isolated credential storage and injection
Automatic token refresh without credential exposure
Action-level policies enforced before every upstream request
Spend limits enforced atomically before every upstream request
Full audit trail of every operation
Instant revocation destroys all credentials and stops all access
Ephemeral credential design: intercepted material is already expired

Works with any model

Authgent is model-agnostic. Use it with:

ClaudeGPT-4GeminiLlamaMistral Command RDeepSeekQwenCustom agents

MCP Server for AI IDEs. Python and Node.js SDKs for custom agent loops. HTTP API for everything else.