Document agent access

changelog.mdx

@@ -1,20 +1,29 @@
 ---
 title: "Product updates"
 description: "New features, improvements, and fixes across the Sendmux platform."
 rss: true
 ---
 
+<Update label="19 June 2026" tags={["New features"]} rss={{ title: "Agent access can now start from auth.md" }}>
+  ## Agent access
+
+Agents can now discover Sendmux through `auth.md`, create an agent-managed team with one free `@myagent.mx` mailbox, and invite a verified human owner.
+
+Pre-claim agent tokens can read mailbox data and receive mail, but they cannot send mail until a human claims the team.
+
+</Update>
+
 <Update label="17 June 2026" tags={["Improvements"]} rss={{ title: "MCP authentication is easier for agents to discover" }}>
   ## Hosted MCP
 
 Agents can now discover Sendmux's OAuth protected resource metadata from the app domain, including the supported authorisation server and scopes, so connection setup can start from standard OAuth discovery.
 
 </Update>
 
 <Update label="17 June 2026" tags={["New features"]} rss={{ title: "SDKs, CLI, and MCP are generally available" }}>
   ## Developer tools
 
 Sendmux SDKs are now available for TypeScript, Python, Go, PHP, and Ruby, with package-managed installs from npm, PyPI, the Go module proxy, Packagist, and RubyGems.
 
 The `sendmux` CLI is now available from npm, with profile management and JSON output across generated Management, Mailbox, and Sending commands.
 
@@ -54,7 +63,7 @@
   ## Bug fixes
 
 - New mailbox keys now confirm access before they are shown, so you can use the returned key immediately.
 - If key setup is temporarily unavailable, the Management API now returns a retryable service unavailable response instead of showing a key that is not ready yet.
 
 </Update>
 
@@ -70,7 +79,7 @@
 - Thread lists now stay aligned with the current mailbox, folder, and search even when a refresh finishes after you have switched views.
 - Starting another compose action now saves the current draft before replacing the compose window, including when the draft is minimised.
 - Inboxes with many messages now load thread lists more reliably by fetching attachment details only when a message is opened.
 - Message opens, draft autosaves, sends, and label actions now refresh only the current inbox data needed, so those actions feel faster in day-to-day use.
 
 </Update>
 
@@ -147,7 +156,7 @@
 
 Local MCP setups can now use the same product-line selection for one, several, or all product lines.
 
 Local all-product-line MCP setups can use separate keys for each product line, so teams can keep least-privilege key boundaries while still giving an agent the full curated toolset.
 
 Hosted Product MCP Sending tools now keep the same permission, sending-scope, and rate-limit checks as direct Sending API calls before each send request is accepted.
 
@@ -157,7 +166,7 @@
 
 Re-authorising an existing connected app now replaces its previous product-line grant, so removed product lines disappear from that app instead of leaving stale access behind.
 
 ## SDKs and CLI
 
 SDK and CLI surfaces now account for every documented operation and expose the supported options and filters.
 
@@ -183,7 +192,7 @@
 <Update label="7 June 2026" tags={["Bug fixes"]} rss={{ title: "Inbox quota sync is more reliable" }}>
   ## Bug fixes
 
 - Inbox quota sync now tells clients when quota data should be refetched instead of returning an invalid sync error.
 
 </Update>
 
@@ -207,20 +216,20 @@
 <Update label="4 June 2026" tags={["New features"]} rss={{ title: "Hosted MCP access is ready for agents" }}>
   ## Hosted MCP
 
 Teams can now connect supported agent tools to Sendmux through a hosted MCP endpoint, authorise access in the browser, and grant only the inbox and account permissions they choose.
 
 ## Improvements
 
 - The authorisation flow now has clear sign-in, consent, success, denied, and error states.
 - Headless clients can use scoped access tokens with the same permission checks as browser-based connections.
 - Agent tools now follow the same Sendmux role and key permissions used by the API, so unavailable actions stay hidden and blocked.
 
 </Update>
 
 <Update label="2 June 2026" tags={["Improvements","Bug fixes"]} rss={{ title: "Inbox credentials are more reliable" }}>
   ## Inboxes
 
 Inbox credentials now use provider-issued secrets while preserving Sendmux key IDs, improving compatibility with the managed mailbox platform.
 
 ## Improvements
 
@@ -236,8 +245,8 @@
 <Update label="2 June 2026" tags={["Bug fixes"]} rss={{ title: "Shared mailbox creation is more reliable" }}>
   ## Bug fixes
 
 - Creating a mailbox on the shared Sendmux domain now checks the shared-domain setup before provisioning the mailbox, so generated addresses no longer fail when required domain records are missing.
 - Domain creation and deletion now consistently protect the shared Sendmux domain while still letting teams delete the mailboxes they created.
 - Sign-up legal links now use shorter labels so the agreement line fits better on narrow screens.
 
 </Update>
@@ -268,7 +277,7 @@
 
 ## Bug fixes
 
 - Draft autosave now backs off while a message is sending, reducing duplicate saves and avoidable rate-limit warnings.
 - Email buttons now render with a consistent background across email clients.
 - Deliverability alerts now count bounce rate and complaint rate separately when both need attention.
 
@@ -299,7 +308,7 @@
 ## Improvements
 
 - The health strip now fills completed hours and shows the selected hour's sent, received, and failed counts directly in the summary.
 - Activity chart tooltips now match the dashboard style and stay compact while you inspect daily sending and receiving totals.
 - Domain status now uses the latest saved verification details so SPF, DKIM, and DMARC signals can be shown independently after checks run.
 
 ## Bug fixes
@@ -321,7 +330,7 @@
 
 The team overview now shows a clearer health summary with recent sending, receiving, webhook, billing, domain, API key, and capacity signals together in one place.
 
 Activity charts now use cached rollups so dashboard refreshes stay fast for busy teams.
 
 ## Improvements
 
@@ -354,14 +363,14 @@
 <Update label="28 May 2026" tags={["Improvements","Bug fixes"]} rss={{ title: "Inbox layout, autosave, and log tables are easier to use" }}>
   ## Improvements
 
 - The dashboard sidebar now narrows on smaller screens and keeps **Documentation**, **Feedback**, balance, and **Top up** inside the scrollable menu.
 - The **Inboxes** page now gives more room to the open message on narrower desktop screens while keeping the folder menu and conversation list usable.
 
 ## Bug fixes
 
 - Sending and receiving log tables now fit typical browser widths without unnecessary horizontal scrolling.
 - Long message IDs in log tables now show a short readable prefix, so columns stay aligned while the full value remains available.
 - Drafts now autosave once the basic message details are present, and the **Drafts** count updates after the first save.
 - Inbox folder counts now only appear where they are meaningful: unread **Inbox**, all **Drafts**, and all **Spam**.
 - Mailbox filters now hide inactive or deleted mailbox addresses.
 - Incoming log senders now show the message sender instead of a message identifier.
@@ -383,7 +392,7 @@
 ## Improvements
 
 - Webhook event selection now includes search, making it faster to choose the right events when setting up or editing a webhook.
 - The dashboard setup checklist now adapts better on small screens and keeps long task lists within the viewport.
 
 ## Bug fixes
 
@@ -467,7 +476,7 @@
 <Update label="25 May 2026" tags={["New features","Improvements","Bug fixes"]} rss={{ title: "Team setup, sending account management, mailbox suspension, and attachment limits are improved" }}>
   ## Team setup
 
 Team creation now walks you through the setup details we need upfront: your team name, website, industry, how you found Sendmux, preferences, and what you're building. If you want help, you can book a 15-minute consultation without leaving setup.
 
 Signed-in browser agents can create teams after login too, using retry-safe requests so automated onboarding doesn't double-create a team when a request is retried.
 
@@ -516,9 +525,9 @@
 
 See [Billing](/guides/billing) and [Mailboxes](/guides/mailboxes).
 
 ## Realtime mailbox events
 
 The Mailbox API now includes `GET /mailbox/events`, a Server-Sent Events stream for `message.received` and `message.received.spam`. Use it for agents, CLIs, and SDKs that need live mailbox updates without polling.
 
 The stream supports heartbeats, bounded connection lifetimes, and resume with `Last-Event-ID` or `last_event_id`. If the replay window is no longer available, the stream tells the client to sync before reconnecting.
 
@@ -533,7 +542,7 @@
 - Limit usage now appears at the bottom-right of the relevant dashboard pages, so it stays available without crowding the page header.
 - The API key limit now covers active root and mailbox-class credentials, including send-only and mailbox credentials.
 - The team limits guide now clarifies default limits, increase requests, and that email volume is not capped beyond existing sending limits.
 - Webhooks and mailbox realtime events use the same public `message.received` event names for inbound mailbox activity.
 
 ## Bug fixes
 
@@ -550,7 +559,7 @@
 
 - Mailbox lists now show `Name` before `Email`, with clearer column labels.
 - Long domain, mailbox, and webhook headings now stay on one line with cleaner truncation.
 - Long webhook endpoint URLs are clipped in lists and can be inspected from the hover tooltip.
 - Team menus now include a direct **Invite members** action.
 
 ## Bug fixes
@@ -638,7 +647,7 @@
 - Consistent success and error response formats.
 - A request ID on every response for support correlation.
 - Cursor pagination on all list endpoints.
 - ETags and conditional requests (`If-None-Match` / `If-Match`) to save bandwidth and prevent lost updates.
 - [Idempotency keys](/guides/idempotency) so create requests can be retried safely.
 - Rate-limit responses now report the exact number of seconds until your limit resets.
 
@@ -700,10 +709,10 @@
 
 </Update>
 
 <Update label="20 March 2026" tags={["New features"]} rss={{ title: "Sendmux is here — dashboard, sending accounts, dollar-based billing, the Sending API, and a read-only Management API" }}>
   ## Sendmux is here
 
 Welcome to Sendmux. The initial release includes:
 
 - **Dashboard** — an at-a-glance overview with sending charts and a searchable, filterable delivery-log viewer with CSV export.
 - **Sending accounts** — connect accounts over SMTP or with Gmail and Microsoft 365 (including GCC High, DoD, and China clouds), organise them into groups, bulk-test connections, and import in bulk from CSV. See [Sending accounts](/guides/sending-accounts).

cli/index.mdx

@@ -1,6 +1,6 @@
 ---
 title: "CLI"
 description: "Install and configure the Sendmux CLI for management, mailbox, and sending workflows."
 keywords:
   [
     "Sendmux CLI",
@@ -13,11 +13,12 @@
   ]
 ---
 
 Use the `sendmux` CLI when you want terminal access to the same Management, Mailbox, and Sending API surfaces exposed by the SDKs.
 
 <Info>
-  Sending and Mailbox commands require mailbox-scoped `smx_mbx_` keys.
-  Management commands require team-scoped `smx_root_` keys.
+  Sending and Mailbox commands accept mailbox-compatible `smx_mbx_` keys or
+  scoped `smx_agent_` tokens. Management commands require team-scoped
+  `smx_root_` keys.
 </Info>
 
 ## Install
@@ -74,7 +75,7 @@
 
 `--base-url` overrides the API base URL for one command. `SENDMUX_BASE_URL` overrides it for the current shell. A profile can also store a base URL override.
 
-Before running the API call, the CLI checks that the key prefix matches the command surface. A management command fails early when it receives a mailbox key, and mailbox or sending commands fail early when they receive a root key.
+Before running the API call, the CLI checks that the key prefix matches the command surface. A management command fails early when it receives a mailbox-compatible key, and mailbox or sending commands fail early when they receive a root key. API permissions still apply, so a pre-claim `smx_agent_` token cannot send email.
 
 ## Run commands
 

docs.json

@@ -60,7 +60,12 @@
           {
             "group": "AI integrations",
             "icon": "robot",
-            "pages": ["guides/agent-skills", "guides/mcp", "guides/mcp-clients"]
+            "pages": [
+              "guides/agent-access",
+              "guides/agent-skills",
+              "guides/mcp",
+              "guides/mcp-clients"
+            ]
           },
           {
             "group": "Teams and access",

guides/agent-access.mdx

@@ -0,0 +1,174 @@
+---
+title: "Agent access"
+description: "Let an AI agent register a constrained Sendmux mailbox, get a short-lived agent token, and invite its human owner."
+keywords:
+  [
+    "agent access",
+    "auth.md",
+    "AI agents",
+    "agent mailbox",
+    "smx_agent",
+    "owner invite",
+  ]
+---
+
+Agent access lets an AI agent start with one constrained `@myagent.mx` mailbox before a person joins the team. The agent can read and receive mail for that mailbox, then ask Sendmux to invite the human owner.
+
+<Info>
+  Pre-claim agent tokens include `mailbox.read` and `email.receive`. They do
+  not include `email.send`.
+</Info>
+
+## How it works
+
+1. Discover Sendmux at `https://app.sendmux.ai/auth.md`.
+2. Create an anonymous agent identity.
+3. Exchange the returned identity assertion for an `smx_agent_` access token.
+4. Use the token as a Bearer token for allowed Mailbox API calls.
+5. Ask Sendmux to send the owner invite.
+6. After the owner accepts, use normal team credentials and limits.
+
+Sendmux sends the owner invite email through the invite system. The agent does not need Sending API access to invite its owner.
+
+## Discovery
+
+Agents can read the human-readable service document first.
+
+```bash
+curl https://app.sendmux.ai/auth.md
+```
+
+API discovery also starts from the protected-resource metadata URL:
+
+```text
+https://app.sendmux.ai/.well-known/oauth-protected-resource/api/v1
+```
+
+The authorisation-server metadata advertises the token and revocation endpoints. Its `agent_auth` block names the identity and invite endpoints:
+
+```text
+https://app.sendmux.ai/.well-known/oauth-authorization-server/agent-auth
+```
+
+## Register an agent identity
+
+Call the identity endpoint without an existing API key.
+
+```bash
+curl -X POST https://app.sendmux.ai/agent-auth/agent/identity \
+  -H "Content-Type: application/json" \
+  -d '{
+    "type": "anonymous",
+    "mailbox_local_part": "triage-agent",
+    "client_name": "Triage Agent",
+    "idempotency_key": "agent-register-001"
+  }'
+```
+
+The response includes an identity assertion and the assigned mailbox.
+
+```json
+{
+  "registration_id": "areg_abc123",
+  "registration_type": "anonymous",
+  "identity_assertion": "eyJ...",
+  "assertion_expires": "2026-06-18T04:15:00.000Z",
+  "pre_claim_scopes": ["mailbox.read", "email.receive"],
+  "mailbox": {
+    "email": "triage-agent@myagent.mx",
+    "status": "provisioning"
+  }
+}
+```
+
+## Exchange the assertion
+
+Use the OAuth JWT bearer grant to get an `smx_agent_` access token.
+
+```bash
+curl -X POST https://app.sendmux.ai/agent-auth/oauth2/token \
+  -H "Content-Type: application/x-www-form-urlencoded" \
+  --data-urlencode "grant_type=urn:ietf:params:oauth:grant-type:jwt-bearer" \
+  --data-urlencode "assertion=$SENDMUX_AGENT_IDENTITY_ASSERTION" \
+  --data-urlencode "resource=https://app.sendmux.ai/api/v1"
+```
+
+If the mailbox is still being prepared, the token endpoint returns `temporarily_unavailable` with `Retry-After`.
+
+```json
+{
+  "access_token": "smx_agent_...",
+  "token_type": "Bearer",
+  "expires_in": 3600,
+  "scope": "mailbox.read email.receive"
+}
+```
+
+## Use the mailbox
+
+Pass the `smx_agent_` token as a Bearer token to allowed Mailbox API endpoints.
+
+```bash
+curl https://app.sendmux.ai/api/v1/mailbox/me \
+  -H "Authorization: Bearer smx_agent_your_token_here"
+```
+
+The token is mailbox-compatible, but permissions still apply. A pre-claim token can read and receive mail. It cannot send through the Mailbox API or Sending API.
+
+## Invite the owner
+
+Ask Sendmux to invite the human owner.
+
+```bash
+curl -X POST https://app.sendmux.ai/agent-auth/agent/identity/invite \
+  -H "Authorization: Bearer smx_agent_your_token_here" \
+  -H "Content-Type: application/json" \
+  -d '{
+    "email": "owner@example.com",
+    "requested_role": "owner",
+    "idempotency_key": "owner-invite-001"
+  }'
+```
+
+The response only confirms the invite request.
+
+```json
+{
+  "invite_id": "ainv_abc123",
+  "status": "pending"
+}
+```
+
+The invite email goes to the owner. Membership starts only after that person verifies and accepts the invite. One live pre-claim owner invite can be pending per registration; retry the same request with the same `idempotency_key`.
+
+## Revoke a token
+
+Revoke an agent access token when it is no longer needed.
+
+```bash
+curl -X POST https://app.sendmux.ai/agent-auth/oauth2/revoke \
+  -H "Content-Type: application/x-www-form-urlencoded" \
+  --data-urlencode "token=$SENDMUX_AGENT_ACCESS_TOKEN" \
+  --data-urlencode "token_type_hint=access_token"
+```
+
+## Limits
+
+Each anonymous registration gets exactly one constrained `@myagent.mx` mailbox. Unclaimed registrations expire after 24 hours. After the owner accepts the invite, the team uses normal Sendmux limits and can request increases like any other team.
+
+## Next steps
+
+<CardGroup cols={2}>
+  <Card title="Mailbox API" icon="inbox" href="/mailbox-api/introduction">
+    Read and sync mailbox data with an agent token.
+  </Card>
+  <Card title="Agent skills" icon="sparkles" href="/guides/agent-skills">
+    Teach AI coding tools the Sendmux agent workflows.
+  </Card>
+  <Card title="SDKs" icon="code" href="/sdks">
+    Use SDK clients with mailbox-compatible tokens.
+  </Card>
+  <Card title="API keys" icon="key" href="/guides/api-keys">
+    Review manual keys, connected apps, and agent tokens.
+  </Card>
+</CardGroup>

guides/agent-skills.mdx

@@ -1,6 +1,6 @@
 ---
 title: "Agent skills"
 description: "Install Sendmux Agent Skills so AI coding tools choose the right Sendmux API, CLI, MCP, or SDK workflow."
 keywords:
   [
     "Agent Skills",
@@ -14,11 +14,12 @@
   ]
 ---
 
 Sendmux Agent Skills teach AI coding tools how to send email, read mailboxes, manage team resources, and choose low-token Sendmux calls. Use them when your agent needs Sendmux context before it writes commands, API calls, or integration code.
 
 <Info>
-  Skills do not grant Sendmux access by themselves. Create API keys or authorise
-  Product MCP separately, then let the skill choose the right surface for the task.
+  Skills do not grant Sendmux access by themselves. Create API keys, authorise
+  Product MCP, or use agent access first, then let the skill choose the right
+  surface for the task.
 </Info>
 
 ## Install
@@ -59,34 +60,37 @@
 
 | Skill | Use when |
 | --- | --- |
 | `sendmux-getting-started` | Choosing a Sendmux surface, setting up authentication, or making a first verified call. |
 | `sendmux-send-email` | Sending one transactional email or batching multiple sends. |
 | `sendmux-mailbox-agent` | Reading, triaging, replying from, or syncing one mailbox. |
 | `sendmux-management` | Managing domains, mailboxes, sending accounts, webhooks, billing, and logs. |
 | `sendmux-cli` | Running Sendmux commands from a terminal. |
 | `sendmux-mcp-setup` | Connecting Sendmux MCP servers to an agent client. |
 | `sendmux-token-efficient-usage` | Choosing low-token calls such as batch sends, counts, snippets, deltas, cursors, and conditional requests. |
-| `sendmux-email-for-agents` | Giving an AI agent an inbox, a send-receive workflow, or a human-approved draft flow. |
+| `sendmux-email-for-agents` | Giving an AI agent an inbox, a self-registration flow, or a human-approved send workflow. |
 
 ## Choose the right surface
 
 | Task | Default path |
 | --- | --- |
 | Agent already has Sendmux MCP connected | Use the relevant MCP tool first. |
 | Terminal one-shot or scripted admin work | Use the `sendmux` CLI. |
 | Application code | Use an SDK package. |
 | Endpoint detail or uncommon operation | Use the API reference. |
 
-Use mailbox-scoped `smx_mbx_` keys for Sending and Mailbox work. Use team-scoped `smx_root_` keys for Management work.
+Use mailbox-scoped `smx_mbx_` keys for Sending and Mailbox work. Use team-scoped `smx_root_` keys for Management work. Self-registered agents can also use `smx_agent_` tokens for their allowed Mailbox API work. Pre-claim `smx_agent_` tokens do not include `email.send`.
 
 ## Next steps
 
 <CardGroup cols={2}>
   <Card title="MCP" icon="plug" href="/guides/mcp">
     Connect hosted or local Sendmux MCP tools.
   </Card>
+  <Card title="Agent access" icon="bot" href="/guides/agent-access">
+    Let an agent register a constrained mailbox and invite its owner.
+  </Card>
   <Card title="CLI" icon="terminal" href="/cli">
     Run Sendmux workflows from your terminal.
   </Card>
   <Card title="SDKs" icon="code" href="/sdks">
     Choose an SDK package for application code.

guides/api-keys.mdx

@@ -1,6 +1,6 @@
 ---
 title: "API keys"
 description: "Create, scope, rotate, and revoke Sendmux API keys."
 keywords:
   [
     "API keys",
@@ -21,8 +21,9 @@
 
 | Credential class | Created by | Secret lifetime | Where to manage it |
 | --- | --- | --- | --- |
 | **Manual API key** | A team member creates a key in Sendmux. | Long-lived until you rotate or revoke it. | **API Keys** with the **Manual keys** filter. |
 | **Connected app** | You authorise an app through OAuth, such as Product MCP. | 15-minute access tokens with rotating refresh tokens. | **API Keys** with the **Connected apps** filter. |
+| **Agent access token** | An agent registers through agent access. | Short-lived access token. | Agent access flow, then normal team controls after owner acceptance. |
 
 Revoking a manual API key stops that key. Disconnecting a connected app stops that app refreshing access and using its existing connection.
 
@@ -33,9 +34,12 @@
 | **Infrastructure key** | Team automation, providers, routing, billing, logs, domains, mailboxes, and webhooks. | `smx_root_`   |
 | **Sending key**        | Sending mail through the Sending API, SMTP, CLI tools, MCP clients, or agents.        | `smx_mbx_`    |
 | **Mailbox key**        | API, IMAP, and SMTP access for one mailbox.                                           | `smx_mbx_`    |
+| **Agent token**        | Constrained mailbox access for a self-registered agent.                               | `smx_agent_`  |
 
 Sending keys and mailbox keys share the `smx_mbx_` prefix. Their permissions and sending scope decide what each key can do.
 
+Pre-claim agent tokens include `mailbox.read` and `email.receive`, not `email.send`. The agent can ask Sendmux to invite the owner through [agent access](/guides/agent-access).
+
 <Note>
   Each team starts with **100 active credentials** across manual API keys and
   connected apps. See [Team limits](/guides/team-limits).
@@ -43,7 +47,7 @@
 
 ## Connected apps
 
 Connected apps let tools such as Product MCP act with the product lines you authorise. During authorisation, you can choose Management, Mailbox, Sending, or a combination. If you choose Mailbox, you also choose the mailbox set the app can use. Sendmux then issues a short-lived access token for the app and a refresh token that rotates when used.
 
 When a connected app asks for Management access, permissions are grouped by area, including Analytics, Billing, Domains, Email, Keys, Logs, Mailboxes, Providers, Routing, Team, and Webhooks. Each group can be set to **None**, **Read**, **Full**, or **Customise**, so you can review broad access quickly and open individual scopes only when needed.
 
@@ -74,7 +78,7 @@
     through all providers, selected providers, or delivery groups.
   </Step>
   <Step title="Store the secret">
     Copy the generated `smx_root_` or `smx_mbx_` value. Sendmux will not show it again.
   </Step>
 </Steps>
 
@@ -100,7 +104,7 @@
 3. Deploy the new secret to every system that uses it.
 4. Revoke the old key once all callers have moved.
 
 If your team is already at the API key limit, Sendmux requires the old key to be revoked during rotation.
 
 ## Revoke a key
 

guides/mcp-clients.mdx

@@ -1,7 +1,7 @@
 ---
 title: "MCP client setup"
 sidebarTitle: "MCP clients"
 description: "Configure Sendmux Product MCP in supported AI clients."
 keywords:
   [
     "MCP clients",
@@ -15,7 +15,7 @@
   ]
 ---
 
 Use this page to connect Sendmux Product MCP to your AI client. Prefer hosted OAuth when your client supports it. Use local stdio or private HTTP when the client cannot complete hosted OAuth.
 
 <Warning>
   Replace placeholder keys and tokens before running any snippet. Do not commit
@@ -26,7 +26,7 @@
 
 <CardGroup cols={3}>
   <Card title="Hosted OAuth" icon="shield-check" href="#hosted-oauth-clients">
     Use this for Claude, Cursor, Codex, Gemini CLI, Qwen Code, Kiro, OpenCode, Zed, Visual Studio, and ChatGPT.
   </Card>
   <Card title="Local stdio" icon="terminal" href="#local-stdio-clients">
     Use this when your client can launch `sendmux-mcp` on your machine.
@@ -45,8 +45,8 @@
   | Codex | Hosted OAuth | Remote HTTP, local stdio, private HTTP |
   | ChatGPT | Hosted OAuth app | Remote HTTPS MCP app |
   | Gemini CLI | Hosted OAuth | Remote HTTP, local stdio, private HTTP |
   | Qwen Code | Hosted OAuth | Remote HTTP, local stdio, private HTTP |
   | Kiro | Hosted OAuth | Remote HTTP, local stdio, private HTTP |
   | OpenCode | Hosted OAuth | Remote MCP, local MCP |
   | Zed | Hosted OAuth | Remote OAuth, local command, private HTTP |
   | Visual Studio | Hosted OAuth | Remote HTTP, local stdio |
@@ -63,11 +63,13 @@
 </Accordion>
 
 <Info>
   A client can still use Sendmux when hosted OAuth is not listed. Use local
   stdio if the client can launch commands, or private HTTP if it needs a URL.
 </Info>
 
-## Hosted OAuth clients
+<a id="hosted-oauth-clients" />
+
+## Hosted OAuth clients (Recommended)
 
 Use the hosted endpoint when the client supports remote MCP OAuth:
 
@@ -77,14 +79,14 @@
 
 <AccordionGroup>
   <Accordion title="Claude and Claude Desktop" description="Custom connector with browser authorisation.">
     Add a custom connector with server URL `https://mcp.sendmux.ai/mcp`, then connect and complete the Sendmux authorisation flow.
 
     On Team and Enterprise plans, an owner may need to add the custom connector for the organisation before members can connect it.
   </Accordion>
 
   <Accordion title="Claude Code" description="Remote HTTP server with OAuth login from the client.">
     ```bash
     claude mcp add sendmux --transport http https://mcp.sendmux.ai/mcp
     ```
 
     Use `/mcp` in Claude Code if the server is listed as requiring authentication.
@@ -97,7 +99,7 @@
     {
       "mcpServers": {
         "sendmux": {
           "url": "https://mcp.sendmux.ai/mcp"
         }
       }
     }
@@ -257,7 +259,7 @@
 <AccordionGroup>
   <Accordion title="Claude Code" description="Command-launched stdio server.">
     ```bash
     claude mcp add sendmux-mailbox \
       --transport stdio \
       --env SENDMUX_API_KEY="$SENDMUX_MBX_KEY" \
       -- sendmux-mcp-mailbox
@@ -540,7 +542,7 @@
 <AccordionGroup>
   <Accordion title="Claude Code" description="HTTP transport with bearer header.">
     ```bash
     claude mcp add sendmux-local \
       --transport http \
       --header "Authorization: Bearer local-mcp-token" \
       http://127.0.0.1:8765/mcp
@@ -590,7 +592,7 @@
     ```toml
     [mcp_servers.sendmux_local]
     url = "http://127.0.0.1:8765/mcp"
     bearer_token_env_var = "SENDMUX_MCP_HTTP_BEARER_TOKEN"
     ```
   </Accordion>
 
@@ -619,7 +621,7 @@
             "Authorization": "Bearer local-mcp-token"
           },
           "disabled": false,
           "autoApprove": []
         }
       }
     }
@@ -637,7 +639,7 @@
             "Authorization": "Bearer local-mcp-token"
           },
           "disabled": false,
           "alwaysAllow": []
         }
       }
     }
@@ -831,7 +833,7 @@
   </Step>
 
   <Step title="Check the tools">
     Open the client's MCP server list or tool picker and confirm Sendmux tools appear.
   </Step>
 
   <Step title="Select a mailbox when needed">
@@ -853,9 +855,9 @@
     Create mailbox and root keys for local MCP.
   </Card>
   <Card title="Agent skills" icon="sparkles" href="/guides/agent-skills">
     Teach AI coding agents the Sendmux workflows and efficient defaults.
   </Card>
   <Card title="CLI" icon="terminal" href="/cli">
     Run Sendmux workflows from your terminal.
   </Card>
 </CardGroup>

mailbox-api/introduction.mdx

@@ -1,6 +1,6 @@
 ---
 title: "Introduction"
 description: "Mailbox-scoped API endpoints for Sendmux mailbox credentials and connected apps."
 keywords:
   [
     "mailbox API",
@@ -14,7 +14,7 @@
   ]
 ---
 
 The Sendmux Mailbox API is for mailbox-scoped access. Use it when a client should act as a mailbox, or as one mailbox from a connected-app mailbox set, without managing team-wide resources.
 
 Team-wide mailbox provisioning stays in the [Management API](/api/introduction). High-volume provider-routed sending stays in the [Sending API](/sending-api/introduction).
 
@@ -28,14 +28,14 @@
 
 ## Authentication
 
-Authenticate with a mailbox credential or connected-app access token from the Sendmux app. Pass it as a Bearer token in the `Authorization` header.
+Authenticate with a mailbox credential, connected-app access token, or agent access token from Sendmux. Pass it as a Bearer token in the `Authorization` header.
 
 ```bash
 curl https://app.sendmux.ai/api/v1/mailbox/me \
   -H "Authorization: Bearer smx_mbx_your_key_here"
 ```
 
-Manual mailbox credentials are scoped to one mailbox. The same credential is also accepted as the mailbox password for SMTP submission and IMAP retrieval. Connected-app tokens can be granted one or more mailboxes, and each mailbox request is limited to that granted set. Root API keys are rejected on Mailbox API endpoints.
+Manual mailbox credentials are scoped to one mailbox. The same credential is also accepted as the mailbox password for SMTP submission and IMAP retrieval. Connected-app tokens can be granted one or more mailboxes, and each mailbox request is limited to that granted set. Agent access tokens use the `smx_agent_` prefix and are limited by their granted scopes. Root API keys are rejected on Mailbox API endpoints.
 
 ## Current endpoints
 
@@ -90,6 +90,8 @@
 
 Connected-app tokens can grant a set of mailboxes. Use `GET /mailbox/mailboxes` to list or search the granted set, then pass the selected mailbox's `id` as `mailbox_id` on Mailbox API requests.
 
+Self-registered agent tokens target their assigned mailbox. Omit `mailbox_id` when you use a pre-claim `smx_agent_` token. Pre-claim tokens can read and receive mail, but they cannot send.
+
 ```bash
 curl "https://app.sendmux.ai/api/v1/mailbox/mailboxes?q=support" \
   -H "Authorization: Bearer connected_app_access_token"
@@ -100,7 +102,7 @@
   -H "Authorization: Bearer connected_app_access_token"
 ```
 
 If a connected app has exactly one granted mailbox, Mailbox API requests use that mailbox by default. If several mailboxes are granted and you omit `mailbox_id`, Sendmux returns `400 missing_parameter`. If you pass a mailbox outside the grant, Sendmux returns `403 insufficient_permissions`.
 
 ## Capability discovery
 
@@ -421,7 +423,7 @@
 | `from`           | Search the From header.                                        |
 | `to`             | Search the To header.                                          |
 | `cc`             | Search the Cc header.                                          |
 | `bcc`            | Search the Bcc header.                                         |
 | `subject`        | Search subject text.                                           |
 | `body`           | Search body text.                                              |
 | `header_name`    | Match messages with a specific header.                         |
@@ -829,7 +831,7 @@
 ### Event stream
 
 `GET /mailbox/events` streams mailbox events as Server-Sent Events. Use it for
 agents, CLIs, MCP servers, and SDKs that need to react when inbound mail arrives.
 Use [webhooks](/guides/webhooks-setup) instead when a backend service should
 receive signed event POSTs without keeping a live connection open.
 
@@ -1035,12 +1037,12 @@
 
 ## Conventions
 
 - **snake_case** fields in JSON request and response bodies
 - **UTC ISO 8601 timestamps** in RFC 3339 format: `2026-03-19T10:30:00Z`
 - **Opaque IDs only** for mailbox, message, folder, and attachment resources
 - **`Cache-Control: no-store`** on authenticated responses
 - **Weak `ETag`** headers on single-resource GETs where supported
 - **Header-based idempotency** for retriable POST requests where supported
 
 ## OpenAPI specification
 

sdks/go.mdx

@@ -1,6 +1,6 @@
 ---
 title: "Go SDK"
 description: "Install and configure the Sendmux Go module."
 keywords:
   [
     "Go SDK",
@@ -15,18 +15,19 @@
 Use the Go SDK when your application needs importable clients for the Sending, Mailbox, or Management API.
 
 <Info>
-  Sending and Mailbox clients require mailbox-scoped `smx_mbx_` keys.
-  Management clients require team-scoped `smx_root_` keys.
+  Sending and Mailbox clients accept mailbox-compatible `smx_mbx_` keys or
+  scoped `smx_agent_` tokens. Management clients require team-scoped
+  `smx_root_` keys.
 </Info>
 
 ## Requirements
 
 - Go 1.23 or newer.
 - A Sendmux API key for the surface you are calling.
 
 ## Install
 
 The Go SDK is one module with surface subpackages.
 
 ```bash
 go get sendmux.ai/go@v1.0.0
@@ -104,10 +105,15 @@
 
 | Surface | Import path | Factory | API key |
 | --- | --- | --- | --- |
-| Sending | `sendmux.ai/go/sending` | `sending.New` | `smx_mbx_` |
-| Mailbox | `sendmux.ai/go/mailbox` | `mailbox.New` | `smx_mbx_` |
+| Sending | `sendmux.ai/go/sending` | `sending.New` | `smx_mbx_` or scoped `smx_agent_` |
+| Mailbox | `sendmux.ai/go/mailbox` | `mailbox.New` | `smx_mbx_` or scoped `smx_agent_` |
 | Management | `sendmux.ai/go/management` | `management.New` | `smx_root_` |
 
+<Note>
+  The SDK accepts `smx_agent_` on mailbox-compatible clients, but the API still
+  enforces endpoint permissions. Pre-claim agent tokens cannot send email.
+</Note>
+
 Sending uses `https://smtp.sendmux.ai/api/v1` by default. Mailbox and Management use `https://app.sendmux.ai/api/v1`.
 
 ## Shared API behaviour
@@ -122,9 +128,9 @@
 
 Surface clients use `core.NewHTTPClient()` by default. It retries safe requests and requests that carry `Idempotency-Key`, then honours `Retry-After` and `X-RateLimit-Reset` response headers.
 
 Pass `WithRetryOptions(core.RetryOptions{...})` into a surface factory to change attempts and backoff.
 
 ### Idempotency and ETags
 
 Use surface header helpers when a generated operation accepts optional header values.
 
@@ -136,7 +142,7 @@
 _, _, _ = idempotencyKey, ifMatch, ifNoneMatch
 ```
 
 Use `Idempotency-Key` for retry-safe mutating requests. Use `If-Match` and `If-None-Match` with single-resource endpoints that support ETags.
 
 ### Errors
 

sdks/index.mdx

@@ -1,7 +1,7 @@
 ---
 title: "SDKs"
 sidebarTitle: "Overview"
 description: "Choose a Sendmux SDK package and the API surface it should use."
 keywords:
   [
     "SDKs",
@@ -16,31 +16,36 @@
   ]
 ---
 
 Sendmux SDKs give your application package-managed clients for the Sending, Mailbox, and Management APIs.
 
 Use an umbrella package when one application needs more than one API surface. Use a surface package when you want a smaller dependency for one job.
 
 <Info>
-  Create the API key in Sendmux before you install a package. Sending and
-  Mailbox clients use mailbox-scoped `smx_mbx_` keys. Management clients use
-  team-scoped `smx_root_` keys.
+  Create the credential in Sendmux before you install a package. Sending and
+  Mailbox clients accept mailbox-compatible `smx_mbx_` keys or scoped
+  `smx_agent_` tokens. Management clients use team-scoped `smx_root_` keys.
 </Info>
 
 ## Choose a surface
 
 | Surface | Use it for | API key |
 | --- | --- | --- |
-| Sending | Send single or batch emails. | `smx_mbx_` |
-| Mailbox | Read, search, organise, and send from a mailbox. | `smx_mbx_` |
+| Sending | Send single or batch emails. | `smx_mbx_` or scoped `smx_agent_` |
+| Mailbox | Read, search, organise, and send from a mailbox. | `smx_mbx_` or scoped `smx_agent_` |
 | Management | Manage team resources such as domains, sending accounts, mailboxes, webhooks, logs, metrics, and billing data. | `smx_root_` |
 
+<Note>
+  SDK prefix validation treats `smx_agent_` as mailbox-compatible. The API still
+  enforces scopes. Pre-claim agent tokens do not include `email.send`.
+</Note>
+
 ## Choose a package family
 
 | Language | Umbrella package | Surface packages |
 | --- | --- | --- |
 | TypeScript | `@sendmux/sdk` | `@sendmux/sending`, `@sendmux/mailbox`, `@sendmux/management` |
 | Python | `sendmux-sdk` | `sendmux-sending`, `sendmux-mailbox`, `sendmux-management` |
 | Go | `sendmux.ai/go` | `sending`, `mailbox`, `management`, and `sdk` subpackages |
 | PHP | `sendmux/sdk` | `sendmux/sending`, `sendmux/mailbox`, `sendmux/management` |
 | Ruby | `sendmux-sdk` | `sendmux-sending`, `sendmux-mailbox`, `sendmux-management` |
 
@@ -48,10 +53,10 @@
 
 <CardGroup cols={2}>
   <Card title="CLI" icon="terminal" href="/cli">
     Run Sendmux management, mailbox, and sending commands from your terminal.
   </Card>
   <Card title="MCP servers" icon="plug" href="/guides/mcp">
     Connect AI tools to Sendmux docs and authorised product tools.
   </Card>
 </CardGroup>