Passing of Delegated Tokens When Launching Agents #107
Assignees
Labels
enhancement
New features or improvements to existing functionality
exchange-v2
Public hosted exchange v2
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the Request
The current method of instantiating an agent that can use the authenticated exchange is not ideal. It relies on passing the same access token to all launch agents so they can communicate with the exchange. In this model these tokens are subject to expiration, with no recourse for the launched agent, they may be intercepted and used without protection, and they can only be revoked for all launched agents. The canonical flow would involve creating a unique auth client for each agent, and creating delegated tokens to each launched agent.
Sample Code
No response
The text was updated successfully, but these errors were encountered: