Most OAuth flows assume users with browsers. But agents (think: your own AI agents, your customers’ AI agents, Slack bots, GPTs, custom workflows) don’t work that way.
How are you thinking about token lifecycles, delegation, impersonation, revocation, or dynamic discovery for non-human identities?
We’re working on this at Scalekit, inspired by MCP. Shared some notes here.
How are you thinking about token lifecycles, delegation, impersonation, revocation, or dynamic discovery for non-human identities?
We’re working on this at Scalekit, inspired by MCP. Shared some notes here.