Agentic AI Atlasby a5c.ai
/
GitHubDocsDiscord
iiRecord
Agentic AI Atlas · GAP-SEC-006: OAuth Integration
page:docs-harness-features-backlog-gaps-security-gap-sec-006a5c.ai
II.
Page reference

page:docs-harness-features-backlog-gaps-security-gap-sec-006

Reading · 1 min

GAP-SEC-006: OAuth Integration reference

OAuth flow for authenticating with external services (MCP servers, APIs, SaaS integrations) during orchestration, enabling secure credential management.

Pagewiki/docs/harness-features-backlog/gaps/security/GAP-SEC-006.mdOutgoing · 0Incoming · 1

GAP-SEC-006: OAuth Integration

FieldValue
Categorysecurity
PriorityMedium
EffortL
StatusMissing

Description

OAuth flow for authenticating with external services (MCP servers, APIs, SaaS integrations) during orchestration, enabling secure credential management.

Current State

No OAuth in harness. Harness delegates auth to host CLI. External service credentials managed ad-hoc.

Target State

OAuth flow for MCP server authentication. Secure credential storage with scoped access. Token refresh lifecycle management. Credential sharing across runs within a session.

Dependencies

  • GAP-SEC-001 -- governance policy for credential access control

Key Files

ComponentPath
MCP serverpackages/sdk/src/mcp/
Config modulepackages/sdk/src/config/

Recommendation

Phase 4 implementation. Add OAuth client library. Integrate with MCP authentication. Store tokens securely in global state directory.