[Design Proposal] Inbound Security for Agent API Interfaces #550
Replies: 1 comment
-
Inbound security — modes we offer, and the two problems to solvePer-agent security modes:
So the scope here is mode 3, and it surfaces two problems:
We can solve this problems in two separate phases. We can ship the main problem regardless of how we later solve testing — so it is Phase 1. Solving the test flow is Phase 2. Phase 1 — ship OAuth, disable Try-It under OAuth-onlyLand configurable Production consumers are not blocked by the disabled Try-It view, and the issuer is the consumer's choice — we just document the flows: Bundled Thunder: create an OAuth app in the Thunder console (http://thunder.amp.localhost:8080/console), configured to their requirements. Phase 2 — restore a test flow for OAuth-only agentsRelevant facts: Agent Manager already signs RS256 JWTs and serves a JWKS ( These approaches combine — pick a token source, optionally add the isolation modifier: Token source — where the test JWT comes from (pick one)
Isolation modifier — optional, pairs with A or C (not standalone)
Or defer
Likely Phase 2 picks: C + F or A + F for a seamless, isolated test path; B alone (no isolation — uses the customer's own issuer). The decision hinges on whether the OSS |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Problem
Agent Manager exposes APIs for agent invocation, for agents deployed on the platform, but currently these endpoints are unsecured. This creates several limitations:
Since the platform includes Thunder as the identity provider and the API Platform Gateway for policy enforcement, API key and OAuth support should be integrated directly into the Agent lifecycle.
User Stories
Existing Solutions
Within the platform ecosystem, API security is typically handled through:
Previously, Agent APIs did not automatically integrate with these components.
Current workaround
Users had to manually configure authentication outside the platform or expose APIs without built-in OAuth/API key protection. This led to inconsistent security practices and made it harder to securely expose Agent APIs.
Proposed Solution
Overview
We need to:
Key principles:
Design
Gateway Integration
All Agent APIs are routed through the unified API Platform Gateway.
The previous split between ingress and egress gateway paths has been replaced with a single gateway setup. The unified gateway handles:
The gateway has been upgraded to API Platform Gateway 1.1.0.
Authentication is enforced at the gateway layer via policies. Agent API configuration is attached through the
api-configurationtrait, which now injects required gateway metadata such as the artifact UUID.Authentication Modes
1. API Key
2. OAuth (Secure Consumption)
API Deployment Models
Two primary models for API creation in the gateway were evaluated:
UI Support
Agent Deployment Configuration
Users can configure endpoint authentication when deploying an Agent.
Endpoint Authentication
X-API-KeyAgent Testing (Console)
The testing page allows users to generate a short-lived test API Key and invoke the API.
Features:
Alternatives Considered
A custom React-based Agent Catalog was initially proposed for API discovery and consumption. This has been dropped in favor of the API Platform Developer Portal, which provides equivalent functionality without the overhead of maintaining a separate portal. Requirements for what the portal must support are documented in the Developer Portal section above.
Milestones
api-configurationtrait with JWT policy supportapi-configurationtrait with API policy supportBeta Was this translation helpful? Give feedback.
All reactions