'/%3e%3cpath%20d='M0.0123279%2081.2806C-0.146831%2079.1878%201.25023%2077.1519%203.32752%2076.4481L107.009%2041.3323L138.589%2054.3319C144.21%2056.6455%20147.902%2061.853%20148.285%2068.0105L150.666%20106.313L150.525%20106.561L150.53%20106.116L80.0526%20191.386C78.6431%20193.091%2076.2853%20193.66%2074.4498%20192.737C72.6145%20191.813%2071.8251%20189.663%2072.574%20187.626L104.579%20100.622C107.186%2093.5348%20102.503%2086.4982%2095.1014%2086.3823L3.97497%2084.9552C1.84164%2084.9217%200.171803%2083.3733%200.0123279%2081.2806Z'%20fill='url(%23paint1_linear_317_5)'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_317_5'%20x1='140.287'%20y1='222.172'%20x2='97.5135'%20y2='116.921'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236D5BD0'/%3e%3cstop%20offset='1'%20stop-color='%23A1D1A8'/%3e%3c/linearGradient%3e%3clinearGradient%20id='paint1_linear_317_5'%20x1='134.829'%20y1='111.588'%20x2='55.2685'%20y2='108.108'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236D5BD0'/%3e%3cstop%20offset='1'%20stop-color='%23A1D1A8'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e)
'%3e%3cpath%20d='M20.63%203.46994C21.21%201.42994%2023.17%20-0.0400576%2025.26%20-5.75925e-05L223.11%203.85994C224.44%203.88994%20225.63%204.51994%20226.34%205.57994C227.05%206.63994%20227.19%207.99994%20226.72%209.27994L158.07%20198.83C157.34%20200.85%20155.28%20202.18%20153.21%20201.98C151.13%20201.78%20149.63%20200.11%20149.66%20198.03L150.78%20105.45L150.62%20105.65L148.28%2068.0199C147.9%2061.8599%20144.2%2056.6499%20138.58%2054.3399L108.24%2041.8499L108.29%2041.8299L22.91%208.30994C21.01%207.55994%2020.05%205.51994%2020.63%203.47994V3.46994Z'%20fill='url(%23paint0_linear_397_209)'/%3e%3cpath%20d='M142.76%20108.01L142.64%20106.13L140.3%2068.5C140.11%2065.4%20138.33%2062.87%20135.54%2061.72L105.2%2049.23L103.21%2048.41L97.9901%2046.36C96.2301%2045.67%2094.2901%2045.62%2092.5001%2046.23L3.33008%2076.45C1.25008%2077.15%20-0.139919%2079.19%200.0100814%2081.28C0.170081%2083.37%201.84008%2084.92%203.97008%2084.95L95.1001%2086.38C102.5%2086.5%20107.18%2093.53%20104.58%20100.62L72.5801%20187.62C71.8301%20189.66%2072.6201%20191.81%2074.4601%20192.73C76.3001%20193.65%2078.6501%20193.08%2080.0601%20191.38L140.87%20117.81C142.03%20116.4%20142.68%20114.64%20142.7%20112.81L142.76%20108.01Z'%20fill='url(%23paint1_linear_397_209)'/%3e%3c/g%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_397_209'%20x1='148.1'%20y1='222.172'%20x2='102.433'%20y2='119.935'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236D5BD0'/%3e%3cstop%20offset='1'%20stop-color='%23A1D1A8'/%3e%3c/linearGradient%3e%3clinearGradient%20id='paint1_linear_397_209'%20x1='108.012'%20y1='205.938'%20x2='35.3518'%20y2='182.475'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236D5BD0'/%3e%3cstop%20offset='1'%20stop-color='%23A1D1A8'/%3e%3c/linearGradient%3e%3cclipPath%20id='clip0_397_209'%3e%3crect%20width='227'%20height='202'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
rrabbah
github-oauth-agent
- Visibility
- public
- Deploys
- 1
- Build Number
- 39e80787
- Updated
- May 13, 2026
GitHub
OpenAIMastra
Overview
github-oauth-agent demonstrates a complete OAuth2 authentication flow for AI agents built on the Astropods platform. It wraps any underlying agent adapter with an AuthAdapter that intercepts every incoming message: unauthenticated users receive a sign-in link, while authenticated users have their identity automatically injected into the conversation prompt.
Sessions are stored in-memory with an 8-hour TTL and keyed by conversation ID, allowing the agent to maintain per-conversation auth state across turns.
The agent uses GitHub as the Identity Provider and operates on behalf of the authenticated user to list repositories, fetch README content, retrieve repo metadata, and surface recent activity — making it a useful reference implementation for any agent that needs to act as the signed-in user.
Usage
- Configure OAuth credentials and endpoints via the required inputs (
OAUTH_CLIENT_ID,OAUTH_CLIENT_SECRET,OAUTH_AUTH_URL,OAUTH_TOKEN_URL,OAUTH_CALLBACK_URL). - On first message, the agent returns a sign-in link. Click it to authorize via GitHub.
- After authorization, GitHub redirects to the callback server, which exchanges the code for a token, fetches user info, and creates a session.
- Subsequent messages are processed normally with the user's identity prepended to the prompt.
Required Inputs
| Input | Description |
|---|---|
OAUTH_CLIENT_ID | OAuth client ID |
OAUTH_CLIENT_SECRET | OAuth client secret |
OAUTH_AUTH_URL | Authorization endpoint URL |
OAUTH_TOKEN_URL | Token exchange endpoint URL |
OAUTH_CALLBACK_URL | Redirect URI registered with your OAuth provider |
Optional Inputs
| Input | Default | Description |
|---|---|---|
OAUTH_SCOPES | openid profile email | Scopes to request |
OAUTH_USERINFO_URL | — | Userinfo endpoint (OIDC); falls back to token sub-claim |
Example Prompts
Once authenticated, you can ask things like:
- "List my repositories"
- "Show me my recent GitHub activity"
- "How many open issues does my repo have?"
Limitations
- Sessions are stored in-memory; restarting the agent clears all active sessions and requires users to re-authenticate.
- The agent uses a single OAuth client configuration — it does not support multi-tenant or per-user OAuth app credentials.
- Token refresh is not implemented; sessions expire after 8 hours and the user must sign in again.
- Visibility
- public
- Deploys
- 1
- Build Number
- 39e80787
- Updated
- May 13, 2026
GitHubOpenAIMastra