Agent IAM โ€” Now in Early Access

The control plane for
autonomous AI agents

Register agents, issue scoped credentials, authorize every action, and prove it all with a tamper-evident audit trail. Built for the EU AI Act.

Get Early Access See how it works
What IronWeft does

Everything your agents need to be trusted

One API. Every control primitive your autonomous agents need โ€” from registration to retirement.

๐Ÿชช

Agent Identity

Every agent gets an Ed25519 keypair and a cryptographic ID. Human sponsors own every agent โ€” full provenance from day one.

๐Ÿ”‘

Scoped Credentials

Short-lived JWTs with embedded scopes. payments:write can't call data:delete. Credentials expire. Abuse doesn't persist.

โš–๏ธ

Policy Authorization

Every action runs a policy check before it executes. Allow, deny, or challenge. Configurable per tenant โ€” JSON rules today, OPA tomorrow.

๐Ÿ”—

Hash-Chained Audit Log

Append-only, tamper-evident audit trail. SHA-256 chained from the first event. Regulators ask โ€” you produce.

๐Ÿงต

Delegation Chains

Human โ†’ agent โ†’ sub-agent. Scopes only flow down, never up. Suspend one node and the whole chain is denied.

๐Ÿšจ

Auto-Suspend

3 consecutive denies within 60 minutes triggers automatic suspension. Configurable per tenant. Hard lock at 5+.

Developer-first

Three API calls to full agent accountability

Works like Stripe. One API key, REST endpoints, a 5-minute integration.

Register
Authorize
Audit
# 1. Register an agent
curl -X POST https://ironweft.io/agents \
  -H "Authorization: Bearer iw_live_xxx" \
  -H "Content-Type: application/json" \
  -d '{
    "agent_name": "Grace",
    "sponsor_id": "user_margaret_chen",
    "initial_roles": ["call_agent"]
  }'

# Response
{
  "agent_id": "agt_4ae283ac96dd4b40",
  "public_key": "ed25519:272741c6...",
  "status": "active"
}

# 2. Before your agent acts โ€” authorize it
curl -X POST https://ironweft.io/authorize \
  -H "Authorization: Bearer iw_live_xxx" \
  -d '{
    "credential": "<short-lived JWT>",
    "action": "call_initiate",
    "resource": "+1-555-0100"
  }'

# Response
{
  "decision": "allow",
  "audit_event_id": "evt_a1b2c3d4"
}
Audit trail

Every decision. Tamper-evident. Forever.

Each event is SHA-256 chained to the previous one. Delete or alter any row and the chain breaks. Regulators can verify.

0000...0000 โ†’ agent registered allow
a3f8b2c1d4e5... โ†’ call_initiate allow
9d2e7f0c1b3a... โ†’ payment_initiate $750 challenge
4c1a8e3f2d0b... โ†’ payment_initiate $1500 deny
7b0f3c9e1a2d... โ†’ auto_suspended suspended
Pricing

Pay for what your agents do

Usage-based pricing. No per-seat nonsense. Scale from prototype to production on the same plan.

Starter
$0 / month
1,000 authorizations free
$5 / agent / month
Up to 5 agents
Full audit trail
API access
Community support
Founding โ€” 7 slots left
Growth
$49 / month
$0.003 / authorization
$5 / agent / month
Unlimited agents
Custom suspend thresholds
Delegation chains
Email support
$49 base waived โ€” first 6 months
Founding rate locked for life
Pro
$299 / month
$0.002 / authorization
$3 / agent / month
Everything in Growth
Volume discounts at 50k+
Webhook notifications
Priority support
Enterprise
Custom
$0.0008 โ€“ $0.002 / auth
Volume agent pricing
Dedicated infrastructure
OPA / Cerbos policy engine
SLA + uptime guarantee
White-glove onboarding

Founding customer pricing โ€” locked for life

First 10 teams get Growth tier at $0.003/auth forever โ€” 40% below launch rate. Base fee waived for 6 months. Direct line to the team. Your use case shapes the roadmap.

7 of 10 founding slots remaining
Claim Founding Slot โ†’

Ship compliant agents
before August 2026.

The EU AI Act requires provable audit trails for high-risk AI systems. IronWeft is that infrastructure โ€” integrate now, prove compliance on demand.

Claim Founding Slot โ†’