AgentWrit is a credential broker for AI agents. It issues short-lived, scope-attenuated tokens so agents operate with only the permissions their task requires — nothing more, nothing longer. Free for internal use.
Start here. These pages explain what AgentWrit is, why it exists, and how every piece fits together.
| Page | What you'll learn |
|---|---|
| What Is AgentWrit? | The problem, the solution, and the three token types — no prior knowledge required |
| Foundations | What tokens are, why they beat API keys, and how JWTs work under the hood |
| The Three Actors | Operator, Application, Agent — who holds what token and why |
| Scopes and Permissions | The action:resource:identifier format, coverage rules, and the four enforcement points |
| The Credential Lifecycle | Every credential's claims, TTLs, and how they flow through the attenuation chain |
| Design Decisions | Why we chose JWTs, Ed25519, SPIFFE, hash-chained audit, and everything else |
Hands-on guides for each persona. Pick the one that matches your role.
| If you are... | Start here |
|---|---|
| Just trying AgentWrit to see how it works | Your First Five Minutes |
| Building an AI agent in Python, TypeScript, or Go | Getting Started: Developer |
| Deploying AgentWrit in production | Getting Started: Operator |
Deeper walkthroughs for specific tasks and patterns.
| Guide | What it covers |
|---|---|
| Common Tasks | Token renewal, delegation, revocation, audit queries — the everyday operations |
| Integration Patterns | Resource server validation, multi-agent orchestration, cloud federation |
| Scenarios | End-to-end walkthroughs: data pipeline agent, customer service bot, CI/CD runner |
| Troubleshooting | Common errors, what causes them, and how to fix them |
Lookup documentation for endpoints, CLI commands, and internals.
| Reference | What it covers |
|---|---|
| API Reference | All 19 HTTP endpoints — request/response formats, error codes, rate limits |
| CLI Reference (awrit) | Every awrit command with examples and output formats |
| Architecture | Internal package map, component diagrams, data flow |
| Implementation Map | Where every feature lives in the codebase — file paths, function names, test locations |
| Concepts Deep Dive | The full security pattern, industry context, and all eight components |
See AgentWrit in action with the Python SDK demo applications:
| Demo | What it shows |
|---|---|
| MedAssist AI | Healthcare multi-agent pipeline — clinical, prescription, and billing agents operating under strict scope isolation with LLM tool-calling, delegation, and per-patient scoping |
| Support Ticket Zero-Trust | Three LLM-driven agents processing support tickets with broker-issued scoped credentials, streaming execution via SSE, and natural token expiry |
Both demos run against a real AgentWrit broker and show the full credential lifecycle: agent registration, scope enforcement, delegation, renewal, release, and revocation.
If you're new, this path gets you productive fastest:
What Is AgentWrit? → Your First Five Minutes → Pick your persona guide
↓ ↓
Foundations → The Three Actors → Scopes → Common Tasks
If you're evaluating AgentWrit for your organization, start with What Is AgentWrit? — it's written for people who aren't deeply technical.
If you're a security reviewer, start with Concepts Deep Dive and Architecture.