Claude 781e78fa82 docs: Enhance OAuth design with security improvements and agent execution API ...

Security improvements:
- Replace iframe with popup window (industry standard, avoids clickjacking)
- Mandatory PKCE for all OAuth flows (including confidential clients)
- Scoped credential grants (apps request specific capabilities, not blanket access)
- Proxy allowlists (only pre-defined API paths can be proxied)
- SSRF prevention via strict URL validation
- Comprehensive audit logging for all operations
- postMessage nonce validation to prevent replay attacks

New Agent Execution API:
- GET /api/v1/capabilities - capability-based discovery (not raw credential lists)
- POST /api/v1/agents/{agent_id}/execute - grant-scoped agent execution
- GET /api/v1/executions/{execution_id} - poll execution status
- GrantBasedCredentialResolver for secure credential isolation
- Webhook notifications with HMAC signatures
- Rate limiting and concurrent execution limits

2025-12-08 16:02:56 +00:00

..

_javascript

Fix CI/CD for Auto-GPT + docs site deployment

2023-09-06 17:33:08 +02:00

content

docs: Enhance OAuth design with security improvements and agent execution API

2025-12-08 16:02:56 +00:00

overrides

Updating docs nav structure to make Platform first class citizen v2 (#8448)

2024-10-28 16:21:16 +00:00

mkdocs.yml

docs: Add comprehensive Block SDK guide (#10767)

2025-08-28 15:54:13 +00:00

netlify.toml

feat(docs): OAuth docs updates based on google block changes (#8243)

2024-10-08 11:11:14 -05:00

requirements.txt

[Snyk] Security upgrade requests from 2.31.0 to 2.32.4 (#10148)

2025-06-16 15:02:12 +00:00