Authentication

Lamdis integrates provider authentication so actions can securely call external APIs on behalf of a user or your app.

Provider credentials

• Configure OAuth providers in Dashboard → Settings → OAuth Providers.
• Fields: authorize_url, token_url, client_id, client_secret (optional), scopes; extras: audience, device_authorization_url, supports_device_code, docs_url.
• Users connect accounts via /api/oauth/start?provider=…; tokens are stored per-user.

Compiled provider modes

• agent mode: Tokens are requested from the end-user (per-user tokens), surfaced in Test MCP flows.
• lamdis mode: Tokens are service-level and injected by the platform.
• Toggle per provider in Dashboard → Settings under “Detected providers in your manifest.”

Action-level auth

• Action definitions declare auth.provider and scopes. The runtime merges scopes across actions and informs the UI which providers to connect.

See also: Dashboard → Settings