OAuth3: Mfano wa Ujumbe wa Wakala Uliopendekezwa
A proposed standard for AI agent delegation. Scoped permissions, instant revocation, full audit trails.
Status:Mpango wa rasimu wa pendekezo la Phuc Labs. Haukuidhinishwa na IETF, W3C, au shirika lolote la viwango.
OAuth3 ni nini?
OAuth 2.0 was built for delegated authorization between apps. OAuth3 extends this to AI agents.
[PH0]] ni pendekezo la utume wa kiwango cha umri wa AI. It addresses four critical problems:
Jinsi OAuth3 Inavyofanya Kazi
Nguzo Nne za Nguzo
Scopes Granular
Si kupata barua pepe zote lakini kusoma barua pepe kutoka kwa bosi, kamwe kufuta yoyote.Ruhusa ni maalum.
Utoaji wa Ruhusa ya wazi
Unaona kile ambacho wakala anataka, unakubali au kukataa, hakuna ruhusa za kimya, hakuna ufikiaji wa ghafla.
Uondoaji wa papo hapo
Acha kumwamini wakala? acha kupata mara moja. Tokeni hufa mara moja. Hakuna kusubiri kwa ajili ya mabadiliko ya password.
Njia kamili ya Ukaguzi wa Ukaguzi
[PH0]] imeundwa kusaidia saini, wakati stempu ya vitendo rekodi. Angalia kila hatua wakala alichukua, wakati alichukua, na kwa nini. Architected kwa FDA Sehemu 11 kufuata (mteja uthibitisho required kwa ajili ya vyeti kamili).
OAuth3 Matters Why
Matatizo yaliyopo: Today, you either give an agent full access or no access at all.
Suluhisho la OAuth3: An OAuth3 token contains three things: scope, TTL, and evidence requirements.
Aikin OAuth3 Token
Notice: the agent can READ inbox but not SEND. It can DRAFT replies but not DELIVER. Every action is logged.
Notice: the agent can READ inbox but not SEND.
Tayari kupeleka kwa usalama?
Ready to delegate safely?