LIVE ON CLOUD — v3.0.0

AI agents are acting.
Nobody's controlling them.
AION does.

Every AI agent action needs a signed, scoped, one-time token. No token — no action. Period.

Works with LangChain, CrewAI, and any Python AI agent. Open source. Free.

Try it live → API Docs GitHub
// why now
The AI agent explosion is here.
The authorization layer is not.
90M+
LangChain downloads — agents executing real actions across production systems worldwide
2025
Year autonomous AI agents moved from research to production — sending emails, calling APIs, modifying databases
$0
Existing open-source solutions for agent-level authorization with cryptographic enforcement
OAuth solved authorization for apps in 2007. JWT solved it for APIs in 2010. In 2026, AI agents are executing real-world actions autonomously — with no equivalent authorization standard. AION is that standard.
// how it works

Two calls. Complete control.

Agent asks — AION decides — allow or block. Every time.

POST /issue
# Agent requests permission
scope: "delete.file"
 
← RSA-2048 signed token
← expires in 5 minutes
← single use only
POST /enforce
# Agent presents token
jti: "a32400ea..."
 
✓ ENFORCED ← allowed
✗ CONSUMED ← replay blocked
✗ SCOPE_MISMATCH ← escalation blocked
// why not build this yourself?

What AION gives you
out of the box

Building this from scratch takes weeks. AION is one pip install.

🔄

Replay Prevention

Every token is single-use. Same token twice — blocked instantly via Redis distributed lock.

🔐

RSA-2048 Signing

Every token cryptographically signed. Tampered or forged tokens rejected. No exceptions.

🎯

Scope Enforcement

Agent authorized to "read" cannot "write". Scope mismatch blocked at enforcement layer.

📋

Audit Trail

Every action logged with hash chaining. Tamper-proof. Verifiable.

👥

Multi-Agent

Multiple agents, multiple scopes — each strictly controlled independently.

LangChain Ready

Native adapters for LangChain and CrewAI included. Drop in and go.

// use cases

Who uses AION?

🤖

AI Agent Developers

Building autonomous agents? AION adds authorization so agents can never exceed their permissions.

scope: "send.email" → allowed
scope: "delete.db" → blocked
🏢

Autonomous Workflows

Running AI pipelines that touch real APIs or data? AION sits between your AI and your systems.

Every action logged + auditable
Revoke any agent token instantly
🔬

AI Safety Layer

Need cryptographic proof that every AI action was explicitly authorized? AION provides it.

Cryptographic authority chain
Full audit trail per action
// try it live

Test AION right now.

No install. No signup. Real API — real response.

RESPONSE
ENFORCEMENT RESULT
REPLAY ATTACK RESULT
// battle tested

Every attack vector.
All blocked.

Tested against real production API — not mocked, not simulated. Including autonomous rogue AI agent simulation.

Fake Token

Token not issued by AION — rejected.

NOT_FOUND ✓

Tampered Token

Single character modified — rejected.

NOT_FOUND ✓

Expired Token

Past TTL — blocked automatically.

EXPIRED ✓

Replay Attack

10 concurrent requests — only 1 allowed.

CONSUMED ✓

Scope Escalation

Wrong scope blocked at enforcement.

SCOPE_MISMATCH ✓

Invalid API Key

Unauthorized access rejected instantly.

401 ✓

Persistence

Tokens survive server restart.

PERSISTENT ✓

Multi-Agent

Each agent strictly isolated by scope.

ISOLATED ✓

Revocation

Revoked token blocked immediately.

REVOKED ✓

XSS Injection

Script injection in scope — blocked.

BLOCKED ✓

Long Scope

10,000 char scope — rejected.

BLOCKED ✓

Rogue AI Agent

Autonomous AI attempted 5 attacks — all blocked.

100% ✓
RSA
2048-bit signing
12/12
attack vectors blocked
100%
rogue AI block rate
0
attacks bypassed
// quickstart

Up in 30 seconds

01 —

Install

One pip command. No config needed.

02 —

Issue Token

Agent requests a signed authority token for a specific scope.

03 —

Enforce

AION verifies — allows or blocks the action.

terminal
$ pip install aion-protocol
API Docs → GitHub → PyPI →
// aion cloud

Managed AION.
Zero setup.

Don't want to self-host? Get a free API key and start in 30 seconds.

LIVE — FREE TIER AVAILABLE
Free
1,000 calls/month
$0 forever
Pro
Unlimited calls
Coming soon
No self-hosting required
RSA-2048 signing included
Replay protection via Redis
No credit card required
Get Free API Key →