Download and install the CLI
Fetch and run the install script. This downloads the
keydris binary and sets it up on your PATH; KEYDRIS_CHANNEL=dev pins the install to the dev release channel.Establish your identity
keydris login runs an OAuth login against Cognito (or the mock IdP locally), then exchanges that login for a short-lived client certificate. This certificate — not a password or API key — is what authenticates every later call the CLI makes to the control plane.Bind the agent to a policy
keydris init claude-code <policy> records which policy governs this agent. The policy’s ID becomes the agent’s blueprint — the identity every rule and grant is evaluated against.Start a session
Running
claude triggers a SessionStart hook. The CLI calls the control plane’s issuer over mTLS and receives a short-lived SPIFFE JWT-SVID scoped to the session — proof of “this specific run of this specific agent,” expiring automatically after a fixed TTL.Every call is intercepted
As Claude Code makes tool calls or outbound requests, the local proxy intercepts each one and sends it to the control plane’s broker for a decision. The broker verifies the session’s SVID, checks it hasn’t been revoked, and evaluates it against the policy’s active rules.
Allow, approve, or reject
On an allow, the broker mints a short-lived access token scoped to that specific destination and call, and the proxy injects it on the wire — the agent never sees or holds a long-lived credential. On approval-required or reject, the call is held or blocked per the policy’s decision.
Install and set up the CLI
The commands from this walkthrough, step by step.
Build a policy
Author the rules the broker evaluates on each call.
