Validate Delegation Token

Validate delegation tokens in receiving services using a minimal, lightweight gateway.

When to use: When a service receives a request from an agent and needs to verify the delegation token before processing it.

Prerequisites

Completed Delegate to Agent
gl-iam[postgresql] installed

5-Line Core

from gl_iam import IAMGateway
from gl_iam.providers.postgresql import PostgreSQLAgentProvider, PostgreSQLConfig

provider = PostgreSQLAgentProvider(PostgreSQLConfig(database_url="postgresql+asyncpg://user:pass@localhost/mydb", secret_key="your-secret-key-min-32-chars-long!", default_org_id="default"))
gateway = IAMGateway.for_agent_auth(agent_provider=provider, secret_key="your-secret-key-min-32-chars-long!")
result = await gateway.validate_delegation_token(token="eyJhbGciOi...")
delegation = result.unwrap()  # DelegationToken with chain, scope, task

Stateless validation: validate_delegation_token only checks the JWT signature and expiry. It does not check whether the agent has been suspended or revoked. For real-time status checks, query the agent provider directly.

Cross-Service Validation Architecture

Delegation tokens are stateless JWTs — the receiving service only needs the shared secret_key to validate, with no network call back to the issuing service.

Step-by-Step

Setup Receiving Service Gateway

Use IAMGateway.for_agent_auth() — a minimal gateway that only needs an agent provider and the shared secret_key. This enables cross-service token validation without requiring access to the full user database:

from gl_iam import IAMGateway
from gl_iam.providers.postgresql import PostgreSQLAgentProvider, PostgreSQLConfig

config = PostgreSQLConfig(
    database_url="postgresql+asyncpg://user:pass@localhost/mydb",
    secret_key="your-secret-key-min-32-chars-long!",
    default_org_id="default",
)
provider = PostgreSQLAgentProvider(config)
gateway = IAMGateway.for_agent_auth(agent_provider=provider, secret_key="your-secret-key-min-32-chars-long!")

The secret_key must match the key used by the service that created the delegation token. This is how cross-service validation works — shared secret, no network call.

Validate Token

result = await gateway.validate_delegation_token(token=delegation_token_string)

if result.is_ok:
    delegation = result.unwrap()
    print("Token is valid!")
else:
    print(f"Validation failed: {result.error.message}")

Inspect the Delegation

After validation, inspect the chain, scope, and task:

delegation = result.unwrap()

# Who initiated this delegation chain?
print(f"Root principal: {delegation.chain.root_principal.principal_id}")
print(f"Root type: {delegation.chain.root_principal.principal_type}")

# What scopes were granted?
print(f"Scopes: {delegation.scope.scopes}")
print(f"Budget: {delegation.scope.max_actions}")
print(f"Constraints: {delegation.scope.resource_constraints}")

# What task is this for?
print(f"Task ID: {delegation.task.id}")
print(f"Task purpose: {delegation.task.purpose}")

# Full chain
print(f"Chain depth: {delegation.chain.depth}")
for i, link in enumerate(delegation.chain.links):
    print(f"  [{i}] {link.principal_type}: {link.principal_id}")

Root principal: user:alice
Root type: PrincipalType.USER
Scopes: ['docs:read']
Budget: 50
Constraints: {'department': 'finance'}
Task ID: task-001
Task purpose: Review Q1 financial documents
Chain depth: 2
  [0] PrincipalType.USER: user:alice
  [1] PrincipalType.AGENT: agent:doc-reviewer

Enforce Authorization

Validation confirms the token is authentic — your service must still enforce authorization:

# Example: check if the agent has the required scope
required_scope = "docs:read"
if required_scope not in delegation.scope.scopes:
    raise PermissionError(f"Agent lacks required scope: {required_scope}")

# Example: check resource constraints
if "department" in delegation.scope.resource_constraints:
    allowed_dept = delegation.scope.resource_constraints["department"]
    if requested_department != allowed_dept:
        raise PermissionError(f"Agent restricted to department: {allowed_dept}")

# Proceed with the request
print("Authorization passed, processing request...")

You've validated a delegation token and enforced authorization! Your service can now safely process agent requests.

Complete Example

Create validate_delegation_token.py:

"""Validate a delegation token in a receiving service."""

import asyncio

from gl_iam import IAMGateway
from gl_iam.providers.postgresql import PostgreSQLAgentProvider, PostgreSQLConfig


async def main():
    # Simulating a receiving service that gets a delegation token
    delegation_token = "eyJhbGciOi..."  # Token received from the agent

    config = PostgreSQLConfig(
        database_url="postgresql+asyncpg://user:pass@localhost/mydb",
        secret_key="your-secret-key-min-32-chars-long!",
        default_org_id="default",
    )
    provider = PostgreSQLAgentProvider(config)
    gateway = IAMGateway.for_agent_auth(agent_provider=provider, secret_key="your-secret-key-min-32-chars-long!")

    result = await gateway.validate_delegation_token(token=delegation_token)

    if result.is_ok:
        delegation = result.unwrap()
        print(f"Valid! Root: {delegation.chain.root_principal.principal_id}")
        print(f"Scopes: {delegation.scope.scopes}")
        print(f"Task: {delegation.task.purpose}")
        print(f"Chain depth: {delegation.chain.depth}")
    else:
        print(f"Invalid: {result.error.message}")


if __name__ == "__main__":
    asyncio.run(main())

Run it:

uv run validate_delegation_token.py

Expected output:

Valid! Root: user:alice
Scopes: ['docs:read']
Task: Review Q1 financial documents
Chain depth: 2

Common Pitfalls

Pitfall

Solution

Different secret_key

The validating service must use the same secret_key as the issuing service

Token expired

Check delegation.expires_at — tokens have a finite lifetime set by expires_in_seconds

Token tampered

JWT signature verification will fail — the Result will contain the error

Not checking scopes after validation

Validation only proves authenticity. You must still check delegation.scope.scopes for authorization.

Assuming suspension is checked

Stateless validation does not check agent status. Query the provider for real-time checks.

Next Steps

Delegation Chain — Understand multi-hop chains in validated tokens
Scope & Budget — Learn how to enforce scope and budget constraints

Found an issue on this page? Report it on our feedback form.

PreviousDelegate to Agent NextDelegation Chain

Last updated 8 days ago

Was this helpful?

hashtag5-Line Core

hashtagCross-Service Validation Architecture

hashtagStep-by-Step

hashtagComplete Example

hashtagCommon Pitfalls

hashtagNext Steps

5-Line Core

Cross-Service Validation Architecture

Step-by-Step

Complete Example

Common Pitfalls

Next Steps