# Credentials ## Create Credential `BetaManagedAgentsCredential Beta.Vaults.Credentials.Create(CredentialCreateParamsparameters, CancellationTokencancellationToken = default)` **post** `/v1/vaults/{vault_id}/credentials` Create Credential ### Parameters - `CredentialCreateParams parameters` - `required string vaultID` Path param: Path parameter vault_id - `required Auth auth` Body param: Authentication details for creating a credential. - `class BetaManagedAgentsMcpOAuthCreateParams:` Parameters for creating an MCP OAuth credential. - `required string AccessToken` OAuth access token. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshParams? Refresh` OAuth refresh token parameters for creating a credential with refresh support. - `required string ClientID` OAuth client ID. - `required string RefreshToken` OAuth refresh token. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneParam:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicParam:` Token endpoint uses HTTP Basic authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostParam:` Token endpoint uses POST body authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. - `class BetaManagedAgentsStaticBearerCreateParams:` Parameters for creating a static bearer token credential. - `required string Token` Static bearer token value. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` - `string? displayName` Body param: Human-readable name for the credential. Up to 255 characters. - `IReadOnlyDictionary metadata` Body param: Arbitrary key-value metadata to attach to the credential. Maximum 16 pairs, keys up to 64 chars, values up to 512 chars. - `IReadOnlyList betas` Header param: Optional header to specify the beta version(s) you want to use. - `"message-batches-2024-09-24"MessageBatches2024_09_24` - `"prompt-caching-2024-07-31"PromptCaching2024_07_31` - `"computer-use-2024-10-22"ComputerUse2024_10_22` - `"computer-use-2025-01-24"ComputerUse2025_01_24` - `"pdfs-2024-09-25"Pdfs2024_09_25` - `"token-counting-2024-11-01"TokenCounting2024_11_01` - `"token-efficient-tools-2025-02-19"TokenEfficientTools2025_02_19` - `"output-128k-2025-02-19"Output128k2025_02_19` - `"files-api-2025-04-14"FilesApi2025_04_14` - `"mcp-client-2025-04-04"McpClient2025_04_04` - `"mcp-client-2025-11-20"McpClient2025_11_20` - `"dev-full-thinking-2025-05-14"DevFullThinking2025_05_14` - `"interleaved-thinking-2025-05-14"InterleavedThinking2025_05_14` - `"code-execution-2025-05-22"CodeExecution2025_05_22` - `"extended-cache-ttl-2025-04-11"ExtendedCacheTtl2025_04_11` - `"context-1m-2025-08-07"Context1m2025_08_07` - `"context-management-2025-06-27"ContextManagement2025_06_27` - `"model-context-window-exceeded-2025-08-26"ModelContextWindowExceeded2025_08_26` - `"skills-2025-10-02"Skills2025_10_02` - `"fast-mode-2026-02-01"FastMode2026_02_01` - `"output-300k-2026-03-24"Output300k2026_03_24` - `"user-profiles-2026-03-24"UserProfiles2026_03_24` - `"advisor-tool-2026-03-01"AdvisorTool2026_03_01` - `"managed-agents-2026-04-01"ManagedAgents2026_04_01` - `"cache-diagnosis-2026-04-07"CacheDiagnosis2026_04_07` - `"thinking-token-count-2026-05-13"ThinkingTokenCount2026_05_13` ### Returns - `class BetaManagedAgentsCredential:` A credential stored in a vault. Sensitive fields are never returned in responses. - `required string ID` Unique identifier for the credential. - `required DateTimeOffset? ArchivedAt` A timestamp in RFC 3339 format - `required Auth Auth` Authentication details for a credential. - `class BetaManagedAgentsMcpOAuthAuthResponse:` OAuth credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshResponse? Refresh` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. - `class BetaManagedAgentsStaticBearerAuthResponse:` Static bearer token credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` - `required DateTimeOffset CreatedAt` A timestamp in RFC 3339 format - `required IReadOnlyDictionary Metadata` Arbitrary key-value metadata attached to the credential. - `required Type Type` - `"vault_credential"VaultCredential` - `required DateTimeOffset UpdatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault this credential belongs to. - `string? DisplayName` Human-readable name for the credential. ### Example ```csharp CredentialCreateParams parameters = new() { VaultID = "vlt_011CZkZDLs7fYzm1hXNPeRjv", Auth = new BetaManagedAgentsStaticBearerCreateParams() { Token = "bearer_exampletoken", McpServerUrl = "https://example-server.modelcontextprotocol.io/sse", Type = Type.StaticBearer, }, }; var betaManagedAgentsCredential = await client.Beta.Vaults.Credentials.Create(parameters); Console.WriteLine(betaManagedAgentsCredential); ``` #### Response ```json { "id": "vcrd_011CZkZEMt8gZan2iYOQfSkw", "archived_at": null, "auth": { "mcp_server_url": "https://example-server.modelcontextprotocol.io/sse", "type": "static_bearer" }, "created_at": "2026-03-15T10:00:00Z", "metadata": { "environment": "production" }, "type": "vault_credential", "updated_at": "2026-03-15T10:00:00Z", "vault_id": "vlt_011CZkZDLs7fYzm1hXNPeRjv", "display_name": "Example credential" } ``` ## List Credentials `CredentialListPageResponse Beta.Vaults.Credentials.List(CredentialListParamsparameters, CancellationTokencancellationToken = default)` **get** `/v1/vaults/{vault_id}/credentials` List Credentials ### Parameters - `CredentialListParams parameters` - `required string vaultID` Path param: Path parameter vault_id - `Boolean includeArchived` Query param: Whether to include archived credentials in the results. - `Int limit` Query param: Maximum number of credentials to return per page. Defaults to 20, maximum 100. - `string page` Query param: Opaque pagination token from a previous `list_credentials` response. - `IReadOnlyList betas` Header param: Optional header to specify the beta version(s) you want to use. - `"message-batches-2024-09-24"MessageBatches2024_09_24` - `"prompt-caching-2024-07-31"PromptCaching2024_07_31` - `"computer-use-2024-10-22"ComputerUse2024_10_22` - `"computer-use-2025-01-24"ComputerUse2025_01_24` - `"pdfs-2024-09-25"Pdfs2024_09_25` - `"token-counting-2024-11-01"TokenCounting2024_11_01` - `"token-efficient-tools-2025-02-19"TokenEfficientTools2025_02_19` - `"output-128k-2025-02-19"Output128k2025_02_19` - `"files-api-2025-04-14"FilesApi2025_04_14` - `"mcp-client-2025-04-04"McpClient2025_04_04` - `"mcp-client-2025-11-20"McpClient2025_11_20` - `"dev-full-thinking-2025-05-14"DevFullThinking2025_05_14` - `"interleaved-thinking-2025-05-14"InterleavedThinking2025_05_14` - `"code-execution-2025-05-22"CodeExecution2025_05_22` - `"extended-cache-ttl-2025-04-11"ExtendedCacheTtl2025_04_11` - `"context-1m-2025-08-07"Context1m2025_08_07` - `"context-management-2025-06-27"ContextManagement2025_06_27` - `"model-context-window-exceeded-2025-08-26"ModelContextWindowExceeded2025_08_26` - `"skills-2025-10-02"Skills2025_10_02` - `"fast-mode-2026-02-01"FastMode2026_02_01` - `"output-300k-2026-03-24"Output300k2026_03_24` - `"user-profiles-2026-03-24"UserProfiles2026_03_24` - `"advisor-tool-2026-03-01"AdvisorTool2026_03_01` - `"managed-agents-2026-04-01"ManagedAgents2026_04_01` - `"cache-diagnosis-2026-04-07"CacheDiagnosis2026_04_07` - `"thinking-token-count-2026-05-13"ThinkingTokenCount2026_05_13` ### Returns - `class CredentialListPageResponse:` Response containing a paginated list of credentials. - `IReadOnlyList Data` List of credentials. - `required string ID` Unique identifier for the credential. - `required DateTimeOffset? ArchivedAt` A timestamp in RFC 3339 format - `required Auth Auth` Authentication details for a credential. - `class BetaManagedAgentsMcpOAuthAuthResponse:` OAuth credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshResponse? Refresh` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. - `class BetaManagedAgentsStaticBearerAuthResponse:` Static bearer token credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` - `required DateTimeOffset CreatedAt` A timestamp in RFC 3339 format - `required IReadOnlyDictionary Metadata` Arbitrary key-value metadata attached to the credential. - `required Type Type` - `"vault_credential"VaultCredential` - `required DateTimeOffset UpdatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault this credential belongs to. - `string? DisplayName` Human-readable name for the credential. - `string? NextPage` Pagination token for the next page, or null if no more results. ### Example ```csharp CredentialListParams parameters = new() { VaultID = "vlt_011CZkZDLs7fYzm1hXNPeRjv" }; var page = await client.Beta.Vaults.Credentials.List(parameters); await foreach (var item in page.Paginate()) { Console.WriteLine(item); } ``` #### Response ```json { "data": [ { "id": "vcrd_011CZkZEMt8gZan2iYOQfSkw", "archived_at": null, "auth": { "mcp_server_url": "https://example-server.modelcontextprotocol.io/sse", "type": "static_bearer" }, "created_at": "2026-03-15T10:00:00Z", "metadata": { "environment": "production" }, "type": "vault_credential", "updated_at": "2026-03-15T10:00:00Z", "vault_id": "vlt_011CZkZDLs7fYzm1hXNPeRjv", "display_name": "Example credential" } ], "next_page": "page_MjAyNS0wNS0xNFQwMDowMDowMFo=" } ``` ## Get Credential `BetaManagedAgentsCredential Beta.Vaults.Credentials.Retrieve(CredentialRetrieveParamsparameters, CancellationTokencancellationToken = default)` **get** `/v1/vaults/{vault_id}/credentials/{credential_id}` Get Credential ### Parameters - `CredentialRetrieveParams parameters` - `required string vaultID` Path param: Path parameter vault_id - `required string credentialID` Path param: Path parameter credential_id - `IReadOnlyList betas` Header param: Optional header to specify the beta version(s) you want to use. - `"message-batches-2024-09-24"MessageBatches2024_09_24` - `"prompt-caching-2024-07-31"PromptCaching2024_07_31` - `"computer-use-2024-10-22"ComputerUse2024_10_22` - `"computer-use-2025-01-24"ComputerUse2025_01_24` - `"pdfs-2024-09-25"Pdfs2024_09_25` - `"token-counting-2024-11-01"TokenCounting2024_11_01` - `"token-efficient-tools-2025-02-19"TokenEfficientTools2025_02_19` - `"output-128k-2025-02-19"Output128k2025_02_19` - `"files-api-2025-04-14"FilesApi2025_04_14` - `"mcp-client-2025-04-04"McpClient2025_04_04` - `"mcp-client-2025-11-20"McpClient2025_11_20` - `"dev-full-thinking-2025-05-14"DevFullThinking2025_05_14` - `"interleaved-thinking-2025-05-14"InterleavedThinking2025_05_14` - `"code-execution-2025-05-22"CodeExecution2025_05_22` - `"extended-cache-ttl-2025-04-11"ExtendedCacheTtl2025_04_11` - `"context-1m-2025-08-07"Context1m2025_08_07` - `"context-management-2025-06-27"ContextManagement2025_06_27` - `"model-context-window-exceeded-2025-08-26"ModelContextWindowExceeded2025_08_26` - `"skills-2025-10-02"Skills2025_10_02` - `"fast-mode-2026-02-01"FastMode2026_02_01` - `"output-300k-2026-03-24"Output300k2026_03_24` - `"user-profiles-2026-03-24"UserProfiles2026_03_24` - `"advisor-tool-2026-03-01"AdvisorTool2026_03_01` - `"managed-agents-2026-04-01"ManagedAgents2026_04_01` - `"cache-diagnosis-2026-04-07"CacheDiagnosis2026_04_07` - `"thinking-token-count-2026-05-13"ThinkingTokenCount2026_05_13` ### Returns - `class BetaManagedAgentsCredential:` A credential stored in a vault. Sensitive fields are never returned in responses. - `required string ID` Unique identifier for the credential. - `required DateTimeOffset? ArchivedAt` A timestamp in RFC 3339 format - `required Auth Auth` Authentication details for a credential. - `class BetaManagedAgentsMcpOAuthAuthResponse:` OAuth credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshResponse? Refresh` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. - `class BetaManagedAgentsStaticBearerAuthResponse:` Static bearer token credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` - `required DateTimeOffset CreatedAt` A timestamp in RFC 3339 format - `required IReadOnlyDictionary Metadata` Arbitrary key-value metadata attached to the credential. - `required Type Type` - `"vault_credential"VaultCredential` - `required DateTimeOffset UpdatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault this credential belongs to. - `string? DisplayName` Human-readable name for the credential. ### Example ```csharp CredentialRetrieveParams parameters = new() { VaultID = "vlt_011CZkZDLs7fYzm1hXNPeRjv", CredentialID = "vcrd_011CZkZEMt8gZan2iYOQfSkw", }; var betaManagedAgentsCredential = await client.Beta.Vaults.Credentials.Retrieve(parameters); Console.WriteLine(betaManagedAgentsCredential); ``` #### Response ```json { "id": "vcrd_011CZkZEMt8gZan2iYOQfSkw", "archived_at": null, "auth": { "mcp_server_url": "https://example-server.modelcontextprotocol.io/sse", "type": "static_bearer" }, "created_at": "2026-03-15T10:00:00Z", "metadata": { "environment": "production" }, "type": "vault_credential", "updated_at": "2026-03-15T10:00:00Z", "vault_id": "vlt_011CZkZDLs7fYzm1hXNPeRjv", "display_name": "Example credential" } ``` ## Update Credential `BetaManagedAgentsCredential Beta.Vaults.Credentials.Update(CredentialUpdateParamsparameters, CancellationTokencancellationToken = default)` **post** `/v1/vaults/{vault_id}/credentials/{credential_id}` Update Credential ### Parameters - `CredentialUpdateParams parameters` - `required string vaultID` Path param: Path parameter vault_id - `required string credentialID` Path param: Path parameter credential_id - `Auth auth` Body param: Updated authentication details for a credential. - `class BetaManagedAgentsMcpOAuthUpdateParams:` Parameters for updating an MCP OAuth credential. The `mcp_server_url` is immutable. - `required Type Type` - `"mcp_oauth"McpOAuth` - `string? AccessToken` Updated OAuth access token. - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshUpdateParams? Refresh` Parameters for updating OAuth refresh token configuration. - `string? RefreshToken` Updated OAuth refresh token. - `string? Scope` Updated OAuth scope for the refresh request. - `TokenEndpointAuth TokenEndpointAuth` Updated HTTP Basic authentication parameters for the token endpoint. - `class BetaManagedAgentsTokenEndpointAuthBasicUpdateParam:` Updated HTTP Basic authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `string? ClientSecret` Updated OAuth client secret. - `class BetaManagedAgentsTokenEndpointAuthPostUpdateParam:` Updated POST body authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? ClientSecret` Updated OAuth client secret. - `class BetaManagedAgentsStaticBearerUpdateParams:` Parameters for updating a static bearer token credential. The `mcp_server_url` is immutable. - `required Type Type` - `"static_bearer"StaticBearer` - `string? Token` Updated static bearer token value. - `string? displayName` Body param: Updated human-readable name for the credential. 1-255 characters. - `IReadOnlyDictionary? metadata` Body param: Metadata patch. Set a key to a string to upsert it, or to null to delete it. Omitted keys are preserved. - `IReadOnlyList betas` Header param: Optional header to specify the beta version(s) you want to use. - `"message-batches-2024-09-24"MessageBatches2024_09_24` - `"prompt-caching-2024-07-31"PromptCaching2024_07_31` - `"computer-use-2024-10-22"ComputerUse2024_10_22` - `"computer-use-2025-01-24"ComputerUse2025_01_24` - `"pdfs-2024-09-25"Pdfs2024_09_25` - `"token-counting-2024-11-01"TokenCounting2024_11_01` - `"token-efficient-tools-2025-02-19"TokenEfficientTools2025_02_19` - `"output-128k-2025-02-19"Output128k2025_02_19` - `"files-api-2025-04-14"FilesApi2025_04_14` - `"mcp-client-2025-04-04"McpClient2025_04_04` - `"mcp-client-2025-11-20"McpClient2025_11_20` - `"dev-full-thinking-2025-05-14"DevFullThinking2025_05_14` - `"interleaved-thinking-2025-05-14"InterleavedThinking2025_05_14` - `"code-execution-2025-05-22"CodeExecution2025_05_22` - `"extended-cache-ttl-2025-04-11"ExtendedCacheTtl2025_04_11` - `"context-1m-2025-08-07"Context1m2025_08_07` - `"context-management-2025-06-27"ContextManagement2025_06_27` - `"model-context-window-exceeded-2025-08-26"ModelContextWindowExceeded2025_08_26` - `"skills-2025-10-02"Skills2025_10_02` - `"fast-mode-2026-02-01"FastMode2026_02_01` - `"output-300k-2026-03-24"Output300k2026_03_24` - `"user-profiles-2026-03-24"UserProfiles2026_03_24` - `"advisor-tool-2026-03-01"AdvisorTool2026_03_01` - `"managed-agents-2026-04-01"ManagedAgents2026_04_01` - `"cache-diagnosis-2026-04-07"CacheDiagnosis2026_04_07` - `"thinking-token-count-2026-05-13"ThinkingTokenCount2026_05_13` ### Returns - `class BetaManagedAgentsCredential:` A credential stored in a vault. Sensitive fields are never returned in responses. - `required string ID` Unique identifier for the credential. - `required DateTimeOffset? ArchivedAt` A timestamp in RFC 3339 format - `required Auth Auth` Authentication details for a credential. - `class BetaManagedAgentsMcpOAuthAuthResponse:` OAuth credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshResponse? Refresh` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. - `class BetaManagedAgentsStaticBearerAuthResponse:` Static bearer token credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` - `required DateTimeOffset CreatedAt` A timestamp in RFC 3339 format - `required IReadOnlyDictionary Metadata` Arbitrary key-value metadata attached to the credential. - `required Type Type` - `"vault_credential"VaultCredential` - `required DateTimeOffset UpdatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault this credential belongs to. - `string? DisplayName` Human-readable name for the credential. ### Example ```csharp CredentialUpdateParams parameters = new() { VaultID = "vlt_011CZkZDLs7fYzm1hXNPeRjv", CredentialID = "vcrd_011CZkZEMt8gZan2iYOQfSkw", }; var betaManagedAgentsCredential = await client.Beta.Vaults.Credentials.Update(parameters); Console.WriteLine(betaManagedAgentsCredential); ``` #### Response ```json { "id": "vcrd_011CZkZEMt8gZan2iYOQfSkw", "archived_at": null, "auth": { "mcp_server_url": "https://example-server.modelcontextprotocol.io/sse", "type": "static_bearer" }, "created_at": "2026-03-15T10:00:00Z", "metadata": { "environment": "production" }, "type": "vault_credential", "updated_at": "2026-03-15T10:00:00Z", "vault_id": "vlt_011CZkZDLs7fYzm1hXNPeRjv", "display_name": "Example credential" } ``` ## Delete Credential `BetaManagedAgentsDeletedCredential Beta.Vaults.Credentials.Delete(CredentialDeleteParamsparameters, CancellationTokencancellationToken = default)` **delete** `/v1/vaults/{vault_id}/credentials/{credential_id}` Delete Credential ### Parameters - `CredentialDeleteParams parameters` - `required string vaultID` Path param: Path parameter vault_id - `required string credentialID` Path param: Path parameter credential_id - `IReadOnlyList betas` Header param: Optional header to specify the beta version(s) you want to use. - `"message-batches-2024-09-24"MessageBatches2024_09_24` - `"prompt-caching-2024-07-31"PromptCaching2024_07_31` - `"computer-use-2024-10-22"ComputerUse2024_10_22` - `"computer-use-2025-01-24"ComputerUse2025_01_24` - `"pdfs-2024-09-25"Pdfs2024_09_25` - `"token-counting-2024-11-01"TokenCounting2024_11_01` - `"token-efficient-tools-2025-02-19"TokenEfficientTools2025_02_19` - `"output-128k-2025-02-19"Output128k2025_02_19` - `"files-api-2025-04-14"FilesApi2025_04_14` - `"mcp-client-2025-04-04"McpClient2025_04_04` - `"mcp-client-2025-11-20"McpClient2025_11_20` - `"dev-full-thinking-2025-05-14"DevFullThinking2025_05_14` - `"interleaved-thinking-2025-05-14"InterleavedThinking2025_05_14` - `"code-execution-2025-05-22"CodeExecution2025_05_22` - `"extended-cache-ttl-2025-04-11"ExtendedCacheTtl2025_04_11` - `"context-1m-2025-08-07"Context1m2025_08_07` - `"context-management-2025-06-27"ContextManagement2025_06_27` - `"model-context-window-exceeded-2025-08-26"ModelContextWindowExceeded2025_08_26` - `"skills-2025-10-02"Skills2025_10_02` - `"fast-mode-2026-02-01"FastMode2026_02_01` - `"output-300k-2026-03-24"Output300k2026_03_24` - `"user-profiles-2026-03-24"UserProfiles2026_03_24` - `"advisor-tool-2026-03-01"AdvisorTool2026_03_01` - `"managed-agents-2026-04-01"ManagedAgents2026_04_01` - `"cache-diagnosis-2026-04-07"CacheDiagnosis2026_04_07` - `"thinking-token-count-2026-05-13"ThinkingTokenCount2026_05_13` ### Returns - `class BetaManagedAgentsDeletedCredential:` Confirmation of a deleted credential. - `required string ID` Unique identifier of the deleted credential. - `required Type Type` - `"vault_credential_deleted"VaultCredentialDeleted` ### Example ```csharp CredentialDeleteParams parameters = new() { VaultID = "vlt_011CZkZDLs7fYzm1hXNPeRjv", CredentialID = "vcrd_011CZkZEMt8gZan2iYOQfSkw", }; var betaManagedAgentsDeletedCredential = await client.Beta.Vaults.Credentials.Delete(parameters); Console.WriteLine(betaManagedAgentsDeletedCredential); ``` #### Response ```json { "id": "vcrd_011CZkZEMt8gZan2iYOQfSkw", "type": "vault_credential_deleted" } ``` ## Archive Credential `BetaManagedAgentsCredential Beta.Vaults.Credentials.Archive(CredentialArchiveParamsparameters, CancellationTokencancellationToken = default)` **post** `/v1/vaults/{vault_id}/credentials/{credential_id}/archive` Archive Credential ### Parameters - `CredentialArchiveParams parameters` - `required string vaultID` Path param: Path parameter vault_id - `required string credentialID` Path param: Path parameter credential_id - `IReadOnlyList betas` Header param: Optional header to specify the beta version(s) you want to use. - `"message-batches-2024-09-24"MessageBatches2024_09_24` - `"prompt-caching-2024-07-31"PromptCaching2024_07_31` - `"computer-use-2024-10-22"ComputerUse2024_10_22` - `"computer-use-2025-01-24"ComputerUse2025_01_24` - `"pdfs-2024-09-25"Pdfs2024_09_25` - `"token-counting-2024-11-01"TokenCounting2024_11_01` - `"token-efficient-tools-2025-02-19"TokenEfficientTools2025_02_19` - `"output-128k-2025-02-19"Output128k2025_02_19` - `"files-api-2025-04-14"FilesApi2025_04_14` - `"mcp-client-2025-04-04"McpClient2025_04_04` - `"mcp-client-2025-11-20"McpClient2025_11_20` - `"dev-full-thinking-2025-05-14"DevFullThinking2025_05_14` - `"interleaved-thinking-2025-05-14"InterleavedThinking2025_05_14` - `"code-execution-2025-05-22"CodeExecution2025_05_22` - `"extended-cache-ttl-2025-04-11"ExtendedCacheTtl2025_04_11` - `"context-1m-2025-08-07"Context1m2025_08_07` - `"context-management-2025-06-27"ContextManagement2025_06_27` - `"model-context-window-exceeded-2025-08-26"ModelContextWindowExceeded2025_08_26` - `"skills-2025-10-02"Skills2025_10_02` - `"fast-mode-2026-02-01"FastMode2026_02_01` - `"output-300k-2026-03-24"Output300k2026_03_24` - `"user-profiles-2026-03-24"UserProfiles2026_03_24` - `"advisor-tool-2026-03-01"AdvisorTool2026_03_01` - `"managed-agents-2026-04-01"ManagedAgents2026_04_01` - `"cache-diagnosis-2026-04-07"CacheDiagnosis2026_04_07` - `"thinking-token-count-2026-05-13"ThinkingTokenCount2026_05_13` ### Returns - `class BetaManagedAgentsCredential:` A credential stored in a vault. Sensitive fields are never returned in responses. - `required string ID` Unique identifier for the credential. - `required DateTimeOffset? ArchivedAt` A timestamp in RFC 3339 format - `required Auth Auth` Authentication details for a credential. - `class BetaManagedAgentsMcpOAuthAuthResponse:` OAuth credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshResponse? Refresh` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. - `class BetaManagedAgentsStaticBearerAuthResponse:` Static bearer token credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` - `required DateTimeOffset CreatedAt` A timestamp in RFC 3339 format - `required IReadOnlyDictionary Metadata` Arbitrary key-value metadata attached to the credential. - `required Type Type` - `"vault_credential"VaultCredential` - `required DateTimeOffset UpdatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault this credential belongs to. - `string? DisplayName` Human-readable name for the credential. ### Example ```csharp CredentialArchiveParams parameters = new() { VaultID = "vlt_011CZkZDLs7fYzm1hXNPeRjv", CredentialID = "vcrd_011CZkZEMt8gZan2iYOQfSkw", }; var betaManagedAgentsCredential = await client.Beta.Vaults.Credentials.Archive(parameters); Console.WriteLine(betaManagedAgentsCredential); ``` #### Response ```json { "id": "vcrd_011CZkZEMt8gZan2iYOQfSkw", "archived_at": null, "auth": { "mcp_server_url": "https://example-server.modelcontextprotocol.io/sse", "type": "static_bearer" }, "created_at": "2026-03-15T10:00:00Z", "metadata": { "environment": "production" }, "type": "vault_credential", "updated_at": "2026-03-15T10:00:00Z", "vault_id": "vlt_011CZkZDLs7fYzm1hXNPeRjv", "display_name": "Example credential" } ``` ## Validate Credential `BetaManagedAgentsCredentialValidation Beta.Vaults.Credentials.McpOAuthValidate(CredentialMcpOAuthValidateParamsparameters, CancellationTokencancellationToken = default)` **post** `/v1/vaults/{vault_id}/credentials/{credential_id}/mcp_oauth_validate` Validate Credential ### Parameters - `CredentialMcpOAuthValidateParams parameters` - `required string vaultID` Path param: Path parameter vault_id - `required string credentialID` Path param: Path parameter credential_id - `IReadOnlyList betas` Header param: Optional header to specify the beta version(s) you want to use. - `"message-batches-2024-09-24"MessageBatches2024_09_24` - `"prompt-caching-2024-07-31"PromptCaching2024_07_31` - `"computer-use-2024-10-22"ComputerUse2024_10_22` - `"computer-use-2025-01-24"ComputerUse2025_01_24` - `"pdfs-2024-09-25"Pdfs2024_09_25` - `"token-counting-2024-11-01"TokenCounting2024_11_01` - `"token-efficient-tools-2025-02-19"TokenEfficientTools2025_02_19` - `"output-128k-2025-02-19"Output128k2025_02_19` - `"files-api-2025-04-14"FilesApi2025_04_14` - `"mcp-client-2025-04-04"McpClient2025_04_04` - `"mcp-client-2025-11-20"McpClient2025_11_20` - `"dev-full-thinking-2025-05-14"DevFullThinking2025_05_14` - `"interleaved-thinking-2025-05-14"InterleavedThinking2025_05_14` - `"code-execution-2025-05-22"CodeExecution2025_05_22` - `"extended-cache-ttl-2025-04-11"ExtendedCacheTtl2025_04_11` - `"context-1m-2025-08-07"Context1m2025_08_07` - `"context-management-2025-06-27"ContextManagement2025_06_27` - `"model-context-window-exceeded-2025-08-26"ModelContextWindowExceeded2025_08_26` - `"skills-2025-10-02"Skills2025_10_02` - `"fast-mode-2026-02-01"FastMode2026_02_01` - `"output-300k-2026-03-24"Output300k2026_03_24` - `"user-profiles-2026-03-24"UserProfiles2026_03_24` - `"advisor-tool-2026-03-01"AdvisorTool2026_03_01` - `"managed-agents-2026-04-01"ManagedAgents2026_04_01` - `"cache-diagnosis-2026-04-07"CacheDiagnosis2026_04_07` - `"thinking-token-count-2026-05-13"ThinkingTokenCount2026_05_13` ### Returns - `class BetaManagedAgentsCredentialValidation:` Result of live-probing a credential against its configured MCP server. - `required string CredentialID` Unique identifier of the credential that was validated. - `required Boolean HasRefreshToken` Whether the credential has a refresh token configured. - `required BetaManagedAgentsMcpProbe? McpProbe` The failing step of an MCP validation probe. - `required BetaManagedAgentsRefreshHttpResponse? HttpResponse` An HTTP response captured during a credential validation probe. - `required string Body` Response body. May be truncated and has sensitive values scrubbed. - `required Boolean BodyTruncated` Whether `body` was truncated. - `required string ContentType` Value of the `Content-Type` response header. - `required Int StatusCode` HTTP status code. - `required string Method` The MCP method that failed (for example `initialize` or `tools/list`). - `required BetaManagedAgentsRefreshObject? Refresh` Outcome of a refresh-token exchange attempted during credential validation. - `required BetaManagedAgentsRefreshHttpResponse? HttpResponse` An HTTP response captured during a credential validation probe. - `required Status Status` Outcome of a refresh-token exchange attempted during credential validation. - `"succeeded"Succeeded` - `"failed"Failed` - `"connect_error"ConnectError` - `"no_refresh_token"NoRefreshToken` - `required BetaManagedAgentsCredentialValidationStatus Status` Overall verdict of a credential validation probe. - `"valid"Valid` - `"invalid"Invalid` - `"unknown"Unknown` - `required Type Type` - `"vault_credential_validation"VaultCredentialValidation` - `required DateTimeOffset ValidatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault containing the credential. ### Example ```csharp CredentialMcpOAuthValidateParams parameters = new() { VaultID = "vlt_011CZkZDLs7fYzm1hXNPeRjv", CredentialID = "vcrd_011CZkZEMt8gZan2iYOQfSkw", }; var betaManagedAgentsCredentialValidation = await client.Beta.Vaults.Credentials.McpOAuthValidate(parameters); Console.WriteLine(betaManagedAgentsCredentialValidation); ``` #### Response ```json { "credential_id": "vcrd_011CZkZEMt8gZan2iYOQfSkw", "has_refresh_token": true, "mcp_probe": { "http_response": { "body": "body", "body_truncated": true, "content_type": "content_type", "status_code": 0 }, "method": "method" }, "refresh": { "http_response": { "body": "body", "body_truncated": true, "content_type": "content_type", "status_code": 0 }, "status": "succeeded" }, "status": "valid", "type": "vault_credential_validation", "validated_at": "2026-03-15T10:00:00Z", "vault_id": "vlt_011CZkZDLs7fYzm1hXNPeRjv" } ``` ## Domain Types ### Beta Managed Agents Credential - `class BetaManagedAgentsCredential:` A credential stored in a vault. Sensitive fields are never returned in responses. - `required string ID` Unique identifier for the credential. - `required DateTimeOffset? ArchivedAt` A timestamp in RFC 3339 format - `required Auth Auth` Authentication details for a credential. - `class BetaManagedAgentsMcpOAuthAuthResponse:` OAuth credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshResponse? Refresh` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. - `class BetaManagedAgentsStaticBearerAuthResponse:` Static bearer token credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` - `required DateTimeOffset CreatedAt` A timestamp in RFC 3339 format - `required IReadOnlyDictionary Metadata` Arbitrary key-value metadata attached to the credential. - `required Type Type` - `"vault_credential"VaultCredential` - `required DateTimeOffset UpdatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault this credential belongs to. - `string? DisplayName` Human-readable name for the credential. ### Beta Managed Agents Credential Validation - `class BetaManagedAgentsCredentialValidation:` Result of live-probing a credential against its configured MCP server. - `required string CredentialID` Unique identifier of the credential that was validated. - `required Boolean HasRefreshToken` Whether the credential has a refresh token configured. - `required BetaManagedAgentsMcpProbe? McpProbe` The failing step of an MCP validation probe. - `required BetaManagedAgentsRefreshHttpResponse? HttpResponse` An HTTP response captured during a credential validation probe. - `required string Body` Response body. May be truncated and has sensitive values scrubbed. - `required Boolean BodyTruncated` Whether `body` was truncated. - `required string ContentType` Value of the `Content-Type` response header. - `required Int StatusCode` HTTP status code. - `required string Method` The MCP method that failed (for example `initialize` or `tools/list`). - `required BetaManagedAgentsRefreshObject? Refresh` Outcome of a refresh-token exchange attempted during credential validation. - `required BetaManagedAgentsRefreshHttpResponse? HttpResponse` An HTTP response captured during a credential validation probe. - `required Status Status` Outcome of a refresh-token exchange attempted during credential validation. - `"succeeded"Succeeded` - `"failed"Failed` - `"connect_error"ConnectError` - `"no_refresh_token"NoRefreshToken` - `required BetaManagedAgentsCredentialValidationStatus Status` Overall verdict of a credential validation probe. - `"valid"Valid` - `"invalid"Invalid` - `"unknown"Unknown` - `required Type Type` - `"vault_credential_validation"VaultCredentialValidation` - `required DateTimeOffset ValidatedAt` A timestamp in RFC 3339 format - `required string VaultID` Identifier of the vault containing the credential. ### Beta Managed Agents Credential Validation Status - `enum BetaManagedAgentsCredentialValidationStatus:` Overall verdict of a credential validation probe. - `"valid"Valid` - `"invalid"Invalid` - `"unknown"Unknown` ### Beta Managed Agents Deleted Credential - `class BetaManagedAgentsDeletedCredential:` Confirmation of a deleted credential. - `required string ID` Unique identifier of the deleted credential. - `required Type Type` - `"vault_credential_deleted"VaultCredentialDeleted` ### Beta Managed Agents MCP OAuth Auth Response - `class BetaManagedAgentsMcpOAuthAuthResponse:` OAuth credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshResponse? Refresh` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. ### Beta Managed Agents MCP OAuth Create Params - `class BetaManagedAgentsMcpOAuthCreateParams:` Parameters for creating an MCP OAuth credential. - `required string AccessToken` OAuth access token. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"mcp_oauth"McpOAuth` - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshParams? Refresh` OAuth refresh token parameters for creating a credential with refresh support. - `required string ClientID` OAuth client ID. - `required string RefreshToken` OAuth refresh token. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneParam:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicParam:` Token endpoint uses HTTP Basic authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostParam:` Token endpoint uses POST body authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. ### Beta Managed Agents MCP OAuth Refresh Params - `class BetaManagedAgentsMcpOAuthRefreshParams:` OAuth refresh token parameters for creating a credential with refresh support. - `required string ClientID` OAuth client ID. - `required string RefreshToken` OAuth refresh token. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneParam:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicParam:` Token endpoint uses HTTP Basic authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostParam:` Token endpoint uses POST body authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. ### Beta Managed Agents MCP OAuth Refresh Response - `class BetaManagedAgentsMcpOAuthRefreshResponse:` OAuth refresh token configuration returned in credential responses. - `required string ClientID` OAuth client ID. - `required string TokenEndpoint` Token endpoint URL used to refresh the access token. - `required TokenEndpointAuth TokenEndpointAuth` Token endpoint requires no client authentication. - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? Resource` OAuth resource indicator. - `string? Scope` OAuth scope for the refresh request. ### Beta Managed Agents MCP OAuth Refresh Update Params - `class BetaManagedAgentsMcpOAuthRefreshUpdateParams:` Parameters for updating OAuth refresh token configuration. - `string? RefreshToken` Updated OAuth refresh token. - `string? Scope` Updated OAuth scope for the refresh request. - `TokenEndpointAuth TokenEndpointAuth` Updated HTTP Basic authentication parameters for the token endpoint. - `class BetaManagedAgentsTokenEndpointAuthBasicUpdateParam:` Updated HTTP Basic authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `string? ClientSecret` Updated OAuth client secret. - `class BetaManagedAgentsTokenEndpointAuthPostUpdateParam:` Updated POST body authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? ClientSecret` Updated OAuth client secret. ### Beta Managed Agents MCP OAuth Update Params - `class BetaManagedAgentsMcpOAuthUpdateParams:` Parameters for updating an MCP OAuth credential. The `mcp_server_url` is immutable. - `required Type Type` - `"mcp_oauth"McpOAuth` - `string? AccessToken` Updated OAuth access token. - `DateTimeOffset? ExpiresAt` A timestamp in RFC 3339 format - `BetaManagedAgentsMcpOAuthRefreshUpdateParams? Refresh` Parameters for updating OAuth refresh token configuration. - `string? RefreshToken` Updated OAuth refresh token. - `string? Scope` Updated OAuth scope for the refresh request. - `TokenEndpointAuth TokenEndpointAuth` Updated HTTP Basic authentication parameters for the token endpoint. - `class BetaManagedAgentsTokenEndpointAuthBasicUpdateParam:` Updated HTTP Basic authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `string? ClientSecret` Updated OAuth client secret. - `class BetaManagedAgentsTokenEndpointAuthPostUpdateParam:` Updated POST body authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? ClientSecret` Updated OAuth client secret. ### Beta Managed Agents MCP Probe - `class BetaManagedAgentsMcpProbe:` The failing step of an MCP validation probe. - `required BetaManagedAgentsRefreshHttpResponse? HttpResponse` An HTTP response captured during a credential validation probe. - `required string Body` Response body. May be truncated and has sensitive values scrubbed. - `required Boolean BodyTruncated` Whether `body` was truncated. - `required string ContentType` Value of the `Content-Type` response header. - `required Int StatusCode` HTTP status code. - `required string Method` The MCP method that failed (for example `initialize` or `tools/list`). ### Beta Managed Agents Refresh HTTP Response - `class BetaManagedAgentsRefreshHttpResponse:` An HTTP response captured during a credential validation probe. - `required string Body` Response body. May be truncated and has sensitive values scrubbed. - `required Boolean BodyTruncated` Whether `body` was truncated. - `required string ContentType` Value of the `Content-Type` response header. - `required Int StatusCode` HTTP status code. ### Beta Managed Agents Refresh Object - `class BetaManagedAgentsRefreshObject:` Outcome of a refresh-token exchange attempted during credential validation. - `required BetaManagedAgentsRefreshHttpResponse? HttpResponse` An HTTP response captured during a credential validation probe. - `required string Body` Response body. May be truncated and has sensitive values scrubbed. - `required Boolean BodyTruncated` Whether `body` was truncated. - `required string ContentType` Value of the `Content-Type` response header. - `required Int StatusCode` HTTP status code. - `required Status Status` Outcome of a refresh-token exchange attempted during credential validation. - `"succeeded"Succeeded` - `"failed"Failed` - `"connect_error"ConnectError` - `"no_refresh_token"NoRefreshToken` ### Beta Managed Agents Static Bearer Auth Response - `class BetaManagedAgentsStaticBearerAuthResponse:` Static bearer token credential details for an MCP server. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` ### Beta Managed Agents Static Bearer Create Params - `class BetaManagedAgentsStaticBearerCreateParams:` Parameters for creating a static bearer token credential. - `required string Token` Static bearer token value. - `required string McpServerUrl` URL of the MCP server this credential authenticates against. - `required Type Type` - `"static_bearer"StaticBearer` ### Beta Managed Agents Static Bearer Update Params - `class BetaManagedAgentsStaticBearerUpdateParams:` Parameters for updating a static bearer token credential. The `mcp_server_url` is immutable. - `required Type Type` - `"static_bearer"StaticBearer` - `string? Token` Updated static bearer token value. ### Beta Managed Agents Token Endpoint Auth Basic Param - `class BetaManagedAgentsTokenEndpointAuthBasicParam:` Token endpoint uses HTTP Basic authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` ### Beta Managed Agents Token Endpoint Auth Basic Response - `class BetaManagedAgentsTokenEndpointAuthBasicResponse:` Token endpoint uses HTTP Basic authentication with client credentials. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` ### Beta Managed Agents Token Endpoint Auth Basic Update Param - `class BetaManagedAgentsTokenEndpointAuthBasicUpdateParam:` Updated HTTP Basic authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_basic"ClientSecretBasic` - `string? ClientSecret` Updated OAuth client secret. ### Beta Managed Agents Token Endpoint Auth None Param - `class BetaManagedAgentsTokenEndpointAuthNoneParam:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` ### Beta Managed Agents Token Endpoint Auth None Response - `class BetaManagedAgentsTokenEndpointAuthNoneResponse:` Token endpoint requires no client authentication. - `required Type Type` - `"none"None` ### Beta Managed Agents Token Endpoint Auth Post Param - `class BetaManagedAgentsTokenEndpointAuthPostParam:` Token endpoint uses POST body authentication with client credentials. - `required string ClientSecret` OAuth client secret. - `required Type Type` - `"client_secret_post"ClientSecretPost` ### Beta Managed Agents Token Endpoint Auth Post Response - `class BetaManagedAgentsTokenEndpointAuthPostResponse:` Token endpoint uses POST body authentication with client credentials. - `required Type Type` - `"client_secret_post"ClientSecretPost` ### Beta Managed Agents Token Endpoint Auth Post Update Param - `class BetaManagedAgentsTokenEndpointAuthPostUpdateParam:` Updated POST body authentication parameters for the token endpoint. - `required Type Type` - `"client_secret_post"ClientSecretPost` - `string? ClientSecret` Updated OAuth client secret.