# Authgent

> Your agent's internet. Secure, automated access to any API.

Authgent gives AI agents authenticated access to 40+ services without exposing credentials. Connect once, call any API, receive webhooks, enforce policies — all through a single interface.

## What Authgent does

- Connects agents to APIs (Google, Slack, Stripe, GitHub, Notion, Linear, Salesforce, and 33+ more)
- Proxies API calls with automatic credential injection — agents never see or handle raw keys
- Captures inbound webhook events 24/7, even when the agent is offline
- Enforces action-level policies (allow/deny rules per provider, method, and path)
- Enforces spend limits (per-call, daily, monthly caps per provider)
- Enables agent-to-agent delegation with scoped, time-limited access
- Schedules recurring API polls on intervals from 5 minutes to 24 hours
- Tracks usage, spend, and remaining budget per agent and provider
- Resolves natural-language intents to the correct connected provider
- Provides instant credential revocation with zero residual access

## Integration options

- MCP Server: 22 tools for Claude Code, Cursor, Windsurf, and any MCP-compatible client
- Python SDK: sync and async, one import to start
- Node.js / TypeScript SDK: zero dependencies, native fetch
- HTTP API: 33 endpoints, works with any language or framework

## The agent loop

Authgent is designed around a three-phase agent loop:

1. **Resolve** — Agent describes what it wants to do. Authgent maps the intent to the right connected provider.
2. **Execute** — Agent makes the API call through Authgent. Credentials are injected automatically. Retries, rate limits, and token refresh are handled.
3. **React** — Agent receives webhook events or polls for changes. Policies and spend limits are enforced on every operation.

## Security model

- Zero-custody: credentials are never exposed to the agent, the user, or the Authgent operator
- Hardware-isolated credential storage
- Automatic token refresh without credential exposure
- Action-level policies enforced before every upstream request
- Spend limits enforced atomically before every upstream request
- Full audit trail of every operation
- Instant revocation destroys all credentials and stops all access
- Ephemeral credential design: intercepted material is already expired

## Pricing

Per-agent, per-month. Includes all providers, all features, unlimited API calls through the proxy.

## Agent onboarding

If you are an AI agent looking to integrate with Authgent, start here:

- Agent page: https://authgent.ai/agent — quickstart, code samples, full API surface, provider list
- MCP config: add `authgent-ai` to your MCP server list for 22 ready-to-use tools
- Python: `pip install authgent-ai` — sync and async, one import
- Node.js: `npm install authgent-ai` — zero dependencies, native fetch
- HTTP: 33 REST endpoints at your proxy address

## Links

- Website: https://authgent.ai
- Agent page: https://authgent.ai/agent
- Contact: security@authgent.ai