Agentuity Documentation

Region

https://catalyst-usw.agentuity.cloud

Authentication

All requests require a Bearer token. Pass your API or SDK key in the Authorization header.

Header	Value
`Authorization`	`Bearer YOUR_SDK_KEY`

You can find your SDK key in the Agentuity Console under your project settings.

List OAuth Clients

List all OAuth clients for the current organization. Returns client metadata, user counts, and last activity timestamps.

GET/oidc/clients

https://catalyst-usw.agentuity.cloud/oidc/clients

Response

JSON array of OAuth client objects with usage statistics.

Status	Description
200	Client list returned
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions

Response Fields

Field	Type	Description
`id`	string
`name`	string
`description`	string
`homepage_url`	string
`icon`	string \| null	(optional)
`client_type`	string
`redirect_uris`	string[]
`post_logout_redirect_uris`	string[]
`grant_types`	string[]
`response_types`	string[]
`scopes`	string[]
`org_id`	string	(optional)
`project_id`	string	(optional)
`access_token_lifetime_seconds`	number	(optional)
`refresh_token_lifetime_seconds`	number	(optional)
`id_token_lifetime_seconds`	number	(optional)
`allowed_user_ids`	string[]
`internal`	boolean
`created_at`	string
`updated_at`	string
`user_count`	number
`last_activity`	string \| null	(optional)
`link`	string

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/clients' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Create OAuth Client

Create a new OAuth client application. Returns the client details and a client secret that should be stored securely — it cannot be retrieved again.

POST/oidc/clients

https://catalyst-usw.agentuity.cloud/oidc/clients

Request Body

JSON body with the OAuth client configuration.

Field	Type	Description
`name`	string
`description`	string
`homepage_url`	string
`icon`	string \| null	(optional)
`client_type`	string	(optional)
`redirect_uris`	string[]	(optional)
`post_logout_redirect_uris`	string[]	(optional)
`grant_types`	string[]	(optional)
`response_types`	string[]	(optional)
`scopes`	string[]	(optional)
`project_id`	string	(optional)
`access_token_lifetime_seconds`	number	(optional)
`refresh_token_lifetime_seconds`	number	(optional)
`id_token_lifetime_seconds`	number	(optional)
`allowed_user_ids`	string[]	(optional)

Response

JSON object containing the created client and its client secret.

Status	Description
200	Client created successfully
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions

Response Fields

Field	Type	Description
`client`	object
`client.id`	string
`client.name`	string
`client.description`	string
`client.homepage_url`	string
`client.icon`	string \| null	(optional)
`client.client_type`	string
`client.redirect_uris`	string[]
`client.post_logout_redirect_uris`	string[]
`client.grant_types`	string[]
`client.response_types`	string[]
`client.scopes`	string[]
`client.org_id`	string	(optional)
`client.project_id`	string	(optional)
`client.access_token_lifetime_seconds`	number	(optional)
`client.refresh_token_lifetime_seconds`	number	(optional)
`client.id_token_lifetime_seconds`	number	(optional)
`client.allowed_user_ids`	string[]
`client.internal`	boolean
`client.created_at`	string
`client.updated_at`	string
`client_secret`	string

Example

curl -X POST 'https://catalyst-usw.agentuity.cloud/oidc/clients' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY' \
  -H 'Content-Type: application/json' \
  -d '{
  "name": "My App",
  "description": "An example OAuth application",
  "homepage_url": "https://example.com",
  "redirect_uris": [
    "https://example.com/callback"
  ],
  "scopes": [
    "openid",
    "profile"
  ]
}'

Get OAuth Client

Retrieve a specific OAuth client by ID, including its configuration, user count, and last activity.

GET/oidc/clients/{id}

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID

Response

JSON object with the OAuth client details.

Status	Description
200	Client found and returned
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client not found

Response Fields

Field	Type	Description
`id`	string
`name`	string
`description`	string
`homepage_url`	string
`icon`	string \| null	(optional)
`client_type`	string
`redirect_uris`	string[]
`post_logout_redirect_uris`	string[]
`grant_types`	string[]
`response_types`	string[]
`scopes`	string[]
`org_id`	string	(optional)
`project_id`	string	(optional)
`access_token_lifetime_seconds`	number	(optional)
`refresh_token_lifetime_seconds`	number	(optional)
`id_token_lifetime_seconds`	number	(optional)
`allowed_user_ids`	string[]
`internal`	boolean
`created_at`	string
`updated_at`	string
`user_count`	number
`last_activity`	string \| null	(optional)
`link`	string

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Update OAuth Client

Update an existing OAuth client. Only the provided fields are updated; omitted fields remain unchanged.

PUT/oidc/clients/{id}

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID

Request Body

JSON body with the fields to update.

Field	Type	Description
`name`	string
`description`	string
`homepage_url`	string
`icon`	string \| null
`client_type`	string
`redirect_uris`	string[]
`post_logout_redirect_uris`	string[]
`grant_types`	string[]
`response_types`	string[]
`scopes`	string[]
`project_id`	string
`access_token_lifetime_seconds`	number
`refresh_token_lifetime_seconds`	number
`id_token_lifetime_seconds`	number
`allowed_user_ids`	string[]

Response

JSON object containing the updated client. May include a new client secret if the client type was changed.

Status	Description
200	Client updated successfully
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client not found

Response Fields

Field	Type	Description
`client`	object
`client.id`	string
`client.name`	string
`client.description`	string
`client.homepage_url`	string
`client.icon`	string \| null	(optional)
`client.client_type`	string
`client.redirect_uris`	string[]
`client.post_logout_redirect_uris`	string[]
`client.grant_types`	string[]
`client.response_types`	string[]
`client.scopes`	string[]
`client.org_id`	string	(optional)
`client.project_id`	string	(optional)
`client.access_token_lifetime_seconds`	number	(optional)
`client.refresh_token_lifetime_seconds`	number	(optional)
`client.id_token_lifetime_seconds`	number	(optional)
`client.allowed_user_ids`	string[]
`client.internal`	boolean
`client.created_at`	string
`client.updated_at`	string
`client_secret`	string	(optional)

Example

curl -X PUT 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY' \
  -H 'Content-Type: application/json' \
  -d '{
  "name": "Updated App Name",
  "scopes": [
    "openid",
    "profile",
    "email"
  ]
}'

Delete OAuth Client

Delete an OAuth client and revoke all associated tokens and user consent grants.

DELETE/oidc/clients/{id}

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID

Response

JSON object confirming deletion.

Status	Description
200	Client deleted successfully
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client not found

Response Fields

Field	Type	Description
`deleted`	boolean

Example

curl -X DELETE 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Rotate Client Secret

Generate a new client secret for a confidential OAuth client. The old secret is immediately invalidated. Store the new secret securely — it cannot be retrieved again.

POST/oidc/clients/{id}/rotate-secret

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}/rotate-secret

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID

Response

JSON object containing the client ID and new client secret.

Status	Description
200	Secret rotated successfully
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client not found

Response Fields

Field	Type	Description
`client_id`	string
`client_secret`	string

Example

curl -X POST 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123/rotate-secret' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

List Client Users

List all users who have granted consent to an OAuth client, including their authorized scopes.

GET/oidc/clients/{id}/users

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}/users

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID

Response

JSON array of consent grant objects for the client.

Status	Description
200	User list returned
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client not found

Response Fields

Field	Type	Description
`user_id`	string
`scopes`	string[]
`created_at`	string
`updated_at`	string

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123/users' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Revoke All Client Users

Revoke consent for all users of an OAuth client. All active tokens for this client are invalidated.

DELETE/oidc/clients/{id}/users

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}/users

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID

Response

JSON object confirming revocation.

Status	Description
200	All user consent revoked
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client not found

Response Fields

Field	Type	Description
`deleted`	boolean

Example

curl -X DELETE 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123/users' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Revoke Client User

Revoke a specific user's consent for an OAuth client. The user's active tokens for this client are invalidated.

DELETE/oidc/clients/{id}/users/{user_id}

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}/users/{user_id}

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID
`user_id`	string	Yes	The user ID to revoke

Response

JSON object confirming revocation.

Status	Description
200	User consent revoked
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client or user not found

Response Fields

Field	Type	Description
`deleted`	boolean

Example

curl -X DELETE 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123/users/usr_xyz789' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Get Client Activity

Get daily activity statistics for an OAuth client, including total access counts and unique user counts.

GET/oidc/clients/{id}/activity

https://catalyst-usw.agentuity.cloud/oidc/clients/{id}/activity

Parameters

path

Name	Type	Required	Description
`id`	string	Yes	The OAuth client ID

query

Name	Type	Required	Description
`days`	number	No	Number of days of activity to return (default: 30)

Response

JSON array of daily activity records.

Status	Description
200	Activity data returned
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions
404	Client not found

Response Fields

Field	Type	Description
`activity_date`	string
`total_access`	number
`unique_users`	number

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/clients/cli_abc123/activity?days=7' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Get Bulk Activity

Get aggregated activity statistics across all OAuth clients for the organization.

GET/oidc/clients/activity

https://catalyst-usw.agentuity.cloud/oidc/clients/activity

Parameters

query

Name	Type	Required	Description
`days`	number	No	Number of days of activity to return (default: 30)

Response

JSON array of daily activity records per client.

Status	Description
200	Bulk activity data returned
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions

Response Fields

Field	Type	Description
`client_id`	string
`activity_date`	string
`unique_users`	number

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/clients/activity?days=7' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

List all OAuth applications the current user has authorized, including granted scopes and client details.

GET/oidc/user/consent

https://catalyst-usw.agentuity.cloud/oidc/user/consent

Response

JSON array of user consent objects with client metadata.

Status	Description
200	Consent list returned
401	Unauthorized — invalid or missing API key

Response Fields

Field	Type	Description
`client_id`	string
`scopes`	string[]
`created_at`	string
`updated_at`	string
`client_name`	string
`client_description`	string
`client_icon`	string \| null
`client_homepage_url`	string

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/user/consent' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Revoke the current user's consent for a specific OAuth client. Active tokens for this client are invalidated.

DELETE/oidc/user/consent/{client_id}

https://catalyst-usw.agentuity.cloud/oidc/user/consent/{client_id}

Parameters

path

Name	Type	Required	Description
`client_id`	string	Yes	The OAuth client ID to revoke consent for

Response

JSON object confirming revocation.

Status	Description
200	Consent revoked successfully
401	Unauthorized — invalid or missing API key
404	Consent not found for this client

Response Fields

Field	Type	Description
`deleted`	boolean

Example

curl -X DELETE 'https://catalyst-usw.agentuity.cloud/oidc/user/consent/cli_abc123' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

List Scopes

List all available OAuth scopes and permission categories. Includes scope metadata, consent descriptions, and permission groupings.

GET/oidc/scopes

https://catalyst-usw.agentuity.cloud/oidc/scopes

Response

JSON object containing available scopes and structured permission categories.

Status	Description
200	Scope list returned
401	Unauthorized — invalid or missing API key

Response Fields

Field	Type	Description
`scopes`	object[]
`scopes[].name`	string
`scopes[].description`	string
`scopes[].consent_title`	string
`scopes[].consent_description`	string
`scopes[].sensitive`	boolean
`scopes[].required`	boolean
`scopes[].default`	boolean
`permissions`	object[]
`permissions[].id`	string
`permissions[].label`	string
`permissions[].groups`	object[]
`permissions[].groups[].id`	string
`permissions[].groups[].name`	string
`permissions[].groups[].description`	string
`permissions[].groups[].levels`	object[]
`permissions[].groups[].levels[].label`	string
`permissions[].groups[].levels[].value`	string
`permissions[].groups[].levels[].scopes`	string[]
`permissions[].groups[].levels[].warning`	boolean	(optional)
`permissions[].groups[].levels[].warningTitle`	string	(optional)

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/scopes' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

List Org Members

List all members of the current organization. Used for configuring allowed user restrictions on OAuth clients.

GET/oidc/org/members

https://catalyst-usw.agentuity.cloud/oidc/org/members

Response

JSON array of organization member objects.

Status	Description
200	Member list returned
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions

Response Fields

Field	Type	Description
`id`	string
`first_name`	string \| null
`last_name`	string \| null
`email`	string \| null
`photo_url`	string \| null
`role`	string

Example

curl -X GET 'https://catalyst-usw.agentuity.cloud/oidc/org/members' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Rotate Signing Keys

Rotate the OIDC signing keys for the organization. New tokens will be signed with the new key. Existing tokens remain valid until they expire.

POST/oidc/keys/rotate

https://catalyst-usw.agentuity.cloud/oidc/keys/rotate

Response

JSON object confirming key rotation.

Status	Description
200	Keys rotated successfully
401	Unauthorized — invalid or missing API key
403	Forbidden — insufficient permissions

Response Fields

Field	Type	Description
`rotated`	boolean

Example

curl -X POST 'https://catalyst-usw.agentuity.cloud/oidc/keys/rotate' \
  -H 'Authorization: Bearer $AGENTUITY_SDK_KEY'

Authentication

List OAuth Clients

Response

Response Fields

Example

Create OAuth Client

Request Body

Response

Response Fields

Example

Get OAuth Client

Parameters

Response

Response Fields

Example

Update OAuth Client

Parameters

Request Body

Response

Response Fields

Example

Delete OAuth Client

Parameters

Response

Response Fields

Example

Rotate Client Secret

Parameters

Response

Response Fields

Example

List Client Users

Parameters

Response

Response Fields

Example

Revoke All Client Users

Parameters

Response

Response Fields

Example

Revoke Client User

Parameters

Response

Response Fields

Example

Get Client Activity

Parameters

Response

Response Fields

Example

Get Bulk Activity

Parameters

Response

Response Fields

Example

List User Consent

Response

Response Fields

Example

Revoke User Consent

Parameters

Response

Response Fields

Example

List Scopes

Response

Response Fields

Example

List Org Members

Response

Response Fields

Example

Rotate Signing Keys

Response

Response Fields

Example