d55c8a3c33
Consolidates the scattered per-analyst pages into /me/activity (usage analytics) and /me/profile (account hub). /me/stats and /profile/sessions 301-redirect; /profile, /me/debug, /tokens are removed with every internal link repointed. Includes an XSS fix in the /me/activity page hero, the user_id-keyed session-lookup alignment, and the v0.54.15 release cut. Co-developed by @ZdenekSrotyr and @cvrysanek.
1.1 KiB
1.1 KiB
New: docs/PLATFORM_SETUP.md is the consolidated operator playbook. This doc covers a focused subset; check the playbook first.
Headless / CI usage
For unattended clients (CI, cron, Claude Code), authenticate with a Personal Access Token (PAT) rather than an interactive session.
Create a PAT
Via UI: sign in, open /me/profile, create a token. Copy the raw value — it is shown exactly once.
Via CLI (requires an interactive session):
agnes auth token create --name "github-actions" --ttl 365d --raw
The --raw flag prints only the token, suitable for piping into a secret store.
Use the PAT
Set the AGNES_TOKEN env var:
export AGNES_TOKEN=<your-token>
agnes query "SELECT 1"
GitHub Actions example
- name: Sync data
env:
AGNES_TOKEN: ${{ secrets.AGNES_TOKEN }}
AGNES_SERVER: https://agnes.example.com
run: |
uv tool install "$AGNES_SERVER/cli/wheel/agnes.whl"
agnes pull
Revoke
agnes auth token list
agnes auth token revoke <id|prefix|name>
Or from /me/profile → Revoke.