Documentation
Build permission passports for AI agents.
BehalfID connects external agents and native custom agents to scoped permissions, verification decisions, audit logs, and signed webhook events.
QuickstartCreate an agent, add a permission, install the SDK, verify before execution, and test allowed and denied requests.CLIInstall the behalf CLI to manage agents, permissions, and enforcement from the terminal. Includes MCP server setup and AI tool launchers.API ReferenceUse public REST endpoints for connected agents, permissions, verification, logs, and key rotation.SDKInstall the JavaScript SDK from npm and call BehalfID from Node 18+.Action GatewayRoute safe public web reads through BehalfID so denied actions fail before execution.WebhooksReceive signed events through an outbox-backed delivery system.Site GuardDesign website middleware, workers, or gateways that enforce AI access rules before protected workflows run.ConceptsUnderstand native agents, connected agents, permission passports, providers, and audit logs.SecurityHow BehalfID handles secrets, tokens, fail-closed enforcement, audit logs, and current limitations.