Vengtoo
Authorization for AI agents, services and users. One policy model, one API, one audit trail. Natively compliant with AuthZEN 1.0.
Vengtoo answers a single question at runtime: can this subject perform this action on this resource? Decisions run in the cloud or on a local agent that sits next to your service, pulls your policy bundle and answers in sub-millisecond time.
When to reach for Vengtoo
- You're checking permissions in more than one service and want one source of truth instead of copy-pasted
ifchecks. - You need an audit trail of every access decision — who, what, why, and which policy.
- You're giving AI agents tool access and need to gate what they can actually do.
- You want to change who-can-do-what without redeploying code.
What Vengtoo does
POST /access/v1/evaluation— the only endpoint your application has to call. Returnsdecisionplus acontextobject withreason,access_pathandpolicy_id.- Authorization, not authentication. Bring your own identity provider — Auth0, Clerk, Cognito, Okta, or your own login. You authenticate users; Vengtoo decides what they can do. You never send us your users' identity tokens — each check carries only an opaque subject ID.
- Author policies from the dashboard or as code with the Terraform provider — or send them over the REST API.
- RBAC + ABAC + direct grants. All three access paths evaluated in one request.
- Local agent option. Same API, sub-millisecond decisions, decisions stay on your network.
- Dogfooded. The Vengtoo admin dashboard gates its own features through a local Vengtoo agent.
Get started
New to Vengtoo? Quick Start takes you from zero to a working access check in about 10 minutes.
From there, pick the path that matches what you're protecting:
Authorizing users, services and devices
Classic backend authorization — before letting a request through, your code asks Vengtoo whether the subject is allowed. It's a single API/SDK call, so the check can live anywhere your code runs: a microservice, a serverless function, even a script on a Raspberry Pi at the edge. The subject can be any principal — a user, a service, an IoT device, a robot. Create a resource and a policy, assign your subject, then call /access/v1/evaluation from an SDK or directly.
Authorizing AI agents
You're giving an AI agent tool access and want to gate which tools it can call — especially destructive ones. How you integrate depends on how those tools are exposed:
- MCP Gateway — a drop-in proxy between your MCP client (Claude Code, Cursor, Copilot) and any MCP server. No code changes to the server; every tool call is authorized before it's forwarded. Best when you're connecting to servers you don't control.
- MCP Adapter — a library you embed in your own MCP server. One line (
wrapAllTools(server)) routes each tool call through Vengtoo. Best when you author the server. - Not using MCP? For a LangChain tool set or a custom agent, call the SDK inside your tool — the same check as any backend authorization, just at the tool boundary.
Either way, tool arguments land in resource.properties, so you can write ABAC rules like "support_rep can invoke issue_refund only if amount < 100".
Want decisions on your own infrastructure?
Run decisions locally with the Vengtoo Agent. Deploy the Vengtoo Agent alongside your application for sub-millisecond authorization decisions whose inputs never leave your infrastructure. The agent syncs policies from Vengtoo Cloud and evaluates them locally — so if the cloud is unreachable, it keeps serving from a cached bundle without interruption. Same API, zero code changes.
Under the hood
Your app ─────► /access/v1/evaluation ─────► { decision, context: { reason, policy_id, access_path } }
│
└── cloud (api.vengtoo.com) or local agent (localhost:8181)
Same endpoint shape, same response, whichever you point at.
Next steps
- Quick Start — Authorization model in 10 minutes.
- MCP Adapter — Gate an MCP server's tool calls.
- Vengtoo Agent — Run the agent locally. Metrics, decision logs, warm cache.
- Concepts — Authorization model, access paths, policies.
- API Reference — Full request/response for
/access/v1/evaluation.