> ## Documentation Index > Fetch the complete documentation index at: https://docs.kavachos.com/llms.txt > Use this file to discover all available pages before exploring further. # KavachOS > Auth OS for AI agents. Identity, permissions, delegation, audit, and MCP OAuth in one TypeScript SDK. **Auth for AI agents.** KavachOS gives every agent its own identity, checks permissions at call time, and writes an audit row for every decision. Plugs in after your human auth (Clerk, Auth.js, better-auth, or your own). Runs on Node, edge, Workers, Deno, and Bun. Agent in five minutes. `npm i kavachos` ```ts theme={"system"} import { createKavach } from 'kavachos'; const kavach = await createKavach({ database: { provider: 'sqlite', url: 'kavach.db' }, }); const agent = await kavach.agent.create({ ownerId: user.id, name: 'code-reviewer', type: 'autonomous', permissions: [ { resource: 'mcp:github:*', actions: ['read'] }, ], }); const { allowed, auditId } = await kavach.authorize(agent.id, { action: 'read', resource: 'mcp:github:repos', }); ``` ## What's in the box

**Agent identity** as a first-class entity, not an extension of a user.

**Resource wildcards** with rate limits, time windows, and IP allowlists.

**Delegation chains** with depth, expiry, and cascading revocation.

**Append-only audit** with JSON and CSV export.

**MCP OAuth 2.1** authorization server, PKCE and DCR built in.

**Trust scoring** per agent with anomaly detection and budget caps.

**Ten adapters** for Node, edge, Workers, Deno, Bun.

**Four databases**: SQLite, Postgres, MySQL, Cloudflare D1.

**Web Crypto only** in core, no Node-specific APIs.

## How it fits with your stack ```mermaid theme={"system"} flowchart LR User([Human user]) -->|signs in| HumanAuth[Clerk / Auth.js / better-auth] HumanAuth -->|user ID| Kavach[KavachOS] Kavach -->|agent.create| Agents[(Agents)] Kavach -->|authorize| Decision{allowed?} Decision -->|yes| Tools[MCP servers, APIs, databases] Decision -.->|logged either way| Audit[(Audit trail)] ``` KavachOS does not replace your human auth. It does not handle login forms, password resets, or social OAuth for users. It starts where human auth ends, at the point your product spins up an agent to act on a user's behalf. ## Pick your framework App Router and Pages. Workers, Deno, Bun. Classic Node handlers. Plugins and decorators. Guards and decorators. Server routes. Hooks and endpoints. Server islands. ## The six primitives Bearer tokens (`kv_...`), rotation, expiry. SHA-256 hashed at rest. Resource wildcards, rate limits, time windows, IP allowlists, approval gates. Orchestrator delegates a subset to a sub-agent with depth and expiry. Revocation cascades. Every `authorize()` writes agent, user, resource, action, result, duration. Spec-compliant AS with PKCE S256, RFC 9728, RFC 7591. Nine-factor score per agent. Anomaly detection and budget policies on top. ## Switching from another auth library Concepts map, code diffs, data migration SQL. Hooks, middleware, Clerk data export, rollout plan. New releases land on [GitHub](https://github.com/kavachos/kavachos/releases) every week or two. Watch the repo or follow [@thegdsks](https://x.com/thegdsks) for the highlights.