Skip to content

[0.7] A2A agent identity (agent: namespace + DPoP-bound) #134

Open
Open
[0.7] A2A agent identity (agent: namespace + DPoP-bound)#134
Labels
P1Urgent: - major component broken - High importance vulnerability - Same daytrack-authorityTrack label for Agentic Era
Milestone
Agentic Era
@Raulgooo

Description

@Raulgooo
Raulgooo
opened on May 7, 2026

Release

0.7 — A2A Auth Layer

Objective

Agents have DPoP-bound identities for A2A calls.

Problem

  • No A2A identity standard
  • Agents reuse human auth patterns

Fix

  1. A2A agent identity using agent: namespace
  2. DPoP-bound identity tokens
  3. Identity registration endpoint
  4. Identity introspection

Files

  • internal/api/a2a_handlers.go (new)
  • internal/auth/a2a.go (new)
  • internal/storage/a2a.go (new)

Acceptance Criteria

  • A2A identity registration
  • DPoP-bound identity token
  • agent: namespace
  • Identity introspection
  • SDK support

Metadata

Metadata

Assignees

No one assigned

    Labels

    P1Urgent: - major component broken - High importance vulnerability - Same daytrack-authorityTrack label for Agentic Era

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions