cURL
Endpoints
Upsert Agent Auth Profile
Creates or updates a secure authentication profile for an agent. This endpoint can either create a new profile (returning a new auth token) or update an existing one (using the provided auth token). Authentication profiles are uniquely identified by agent_id + name.
POST
cURL
Overview
This endpoint allows you to create or update a secure authentication profile for your agent in a single operation. It provides a convenient way to either set up a new profile or modify an existing one, depending on whether you provide an auth token.How it works
- You provide an agent ID, API key, and authentication data (key-value pairs)
- For creation: You also provide a profile name
- For updates: You provide the existing auth token
- The system validates that the keys in your auth data match the input arguments defined for your agent
- The system either creates a new encrypted profile or updates an existing one
- For new profiles, you receive an auth token that you can use when running your agent
Creating a new profile
When noauth_token is provided:
- A new authentication profile is created
- A new auth token is generated and returned to you
- The
nameparameter is required to identify your new profile - Important: If the
namealready exists for the givenagent_id, the existing profile will be replaced with a new one and a new auth token will be generated
Updating an existing profile
When anauth_token is provided:
- The existing profile is located and updated with the new auth data
- The original auth token remains valid
Profile identification
- Each authentication profile is uniquely identified by the combination of
agent_idandname - If you create a profile with a name that already exists for that agent, the existing profile will be replaced
- When replacing an existing profile, a new auth token is generated and the old one becomes invalid
- To update an existing profile without replacing it (and keeping the same auth token), use the
auth_tokenparameter instead
Session storage option
- The
should_save_sessionparameter controls whether the agent should maintain session state between runs - When set to
true, any session data from the agent will be preserved for future runs - When set to
falseor not provided, session data is not preserved between runs
Security features
- All authentication data is encrypted using strong AES-GCM encryption
- Each value in your auth data is encrypted with a unique salt
- The encryption key is derived from your auth token and never stored
- Each auth token is bound to a specific agent_id and cannot be used with different agents
Important notes
- The keys in your auth_data must be input arguments defined for your agent
- Store the returned auth_token securely - it cannot be recovered if lost
- When updating, if the auth profile is not found, a 404 error is returned
- For new profiles, the operation returns either “create” or “replace” in the response. “create” indicates an entirely new profile was created. “replace” indicates an existing profile with the same name was replaced.
- For updates, the operation returns “update” in the response
Body
application/json
The ID of the agent to associate with this auth profile
The API key for authentication
Key-value pairs of authentication data that matches the agent's input arguments
Name of the authentication profile (required for creation, optional for updates)
Whether to save session data between agent runs (optional)
The auth token for updating an existing profile (required for updates)
Response
Authentication profile created or updated successfully