SDKs

Official and community SDKs for the Agent Auth Protocol. The protocol is simple enough to implement from scratch in any language — Ed25519 keypairs, device authorization flow, signed JWTs, and three database tables.

TypeScript

Better Auth plugin (Server)

Full reference implementation of the Agent Auth server as a Better Auth plugin. Drop-in agent identity, registration, device flow, capability management, and session verification.

import { betterAuth } from "better-auth";
import { agentAuth } from "better-auth/plugins";

const auth = betterAuth({
  plugins: [agentAuth()],
});

• Agent registration with Ed25519 key verification
• Device authorization flow for user approval
• Capability management and grant tracking
• Session verification via getAgentSession()
• Lifecycle management (expiry, reactivation, revocation)

View on GitHub →

Agent Auth SDK (Client)

Client SDK for agent runtimes. Manages keypairs, signs requests, handles registration and capability escalation. Can run as an MCP server, CLI tool, or embedded library.

npm install agent-auth

• Ed25519 key generation and management
• JWT signing for every request
• Auto-registration with discovery
• Capability escalation handling
• MCP server mode
• CLI interface

View on GitHub →

Python

Coming soon. A Python SDK for the Agent Auth Protocol is in development. It will support both server and client implementations.

In the meantime, you can implement the protocol from scratch in Python using standard libraries for Ed25519 (e.g. cryptography) and JWT (e.g. PyJWT).

Other languages

The protocol is open and language-agnostic. To implement it from scratch, you need:

If you build an implementation, submit a PR to be listed here.