Agent Setup
edgeplane run is the unified agent launcher. It validates your environment, fetches the agent’s onboarding manifest, and injects EdgePlane as an MCP server before handing off to the agent binary.
Prerequisites
Section titled “Prerequisites”edgeplaneinstalled and onPATH— see Installation- Authenticated via
edgeplane auth login(OIDC) or a service account token (mcs_sa_*) for CI
Launching an Agent
Section titled “Launching an Agent”edgeplane run claude # Claude Codeedgeplane run codex # OpenAI Codex CLIedgeplane run gemini # Google Gemini CLIedgeplane launch openclaw # OpenClawedgeplane launch custom # Custom ACP agentWhat edgeplane run does
Section titled “What edgeplane run does”- Checks that the agent binary is on PATH (prints an install hint if not)
- Validates profile/session context against the server
- Fetches agent config from the onboarding manifest
- Writes runtime config to
~/.edgeplane/instances/<session-id>/ - Injects auth context into the agent’s process environment (
EP_SECRETS_SOCKET/EP_SECRETS_SESSIONfor session tokens) execs the agent
Session Tokens
Section titled “Session Tokens”Session tokens (mcs_* prefix) are the recommended auth mechanism for interactive use. They are revocable, expiring, and never written to agent config files on disk.
# Exchange any valid credential for a session tokenedgeplane auth login # default 8h TTLedgeplane auth login --ttl-hours 24 # longer TTLedgeplane auth login --print-token # print token (for scripting)
edgeplane auth whoami # verify identity and expiryedgeplane auth logout # revoke server-side and clear local fileedgeplane auth logout --local-only # clear local file onlyOIDC / Short-lived JWTs
Section titled “OIDC / Short-lived JWTs”For SSO environments, run the browser-based OIDC flow to get a session token:
edgeplane auth login --ttl-hours 8edgeplane run claude| Auth type | Recommended for |
|---|---|
| OIDC (interactive) | Interactive use, SSO environments |
Session token (mcs_*) | Any interactive session after edgeplane auth login |
Service account (mcs_sa_*) | CI, headless pipelines |
| Node JWT | Daemons and machines (edgeplaned) |
Manual MCP Server Setup
Section titled “Manual MCP Server Setup”If you prefer to wire EdgePlane into an existing agent config manually:
Claude Code (.claude.json or mcpServers block):
{ "edgeplane": { "command": "edgeplane", "args": ["serve"], "env": { "EP_BASE_URL": "https://edgeplane.example.com" } }}Codex (~/.codex/config.toml):
[mcp_servers.edgeplane]command = "edgeplane"args = ["serve"]startup_timeout_sec = 45tool_timeout_sec = 60env = { EP_BASE_URL = "https://edgeplane.example.com" }Gemini CLI (~/.gemini/settings.json):
{ "mcpServers": { "edgeplane": { "command": "edgeplane", "args": ["serve"], "env": { "EP_BASE_URL": "https://edgeplane.example.com" } } }}edgeplane serve reads auth automatically from ~/.edgeplane/session.json (OIDC session) or the node JWT at /etc/edgeplane/node.json. No token in the config is needed.
Diagnosing Issues
Section titled “Diagnosing Issues”edgeplane run codex doctor --json # detailed readiness diagnosticsedgeplane auth whoami # verify auth before launchingedgeplane health --json # verify server connectivityIf an agent shows MCP startup incomplete (failed: edgeplane):
- Confirm
edgeplane auth whoamisucceeds before launching - Use shim defaults (
EP_MCP_MODE=shim,EP_STARTUP_PREFLIGHT=none)
edgeplane launch Flags (non-Claude/Codex agents)
Section titled “edgeplane launch Flags (non-Claude/Codex agents)”| Flag | Effect |
|---|---|
--preflight-only | Validate env and auth without launching (CI-safe) |
--no-daemon | Skip daemon management (when daemon is externally managed) |
--skip-config-gen | Use existing config, skip manifest fetch |
--no-embed-token | Omit token from written config file (auto-implied for session tokens) |
--legacy-global-config | Write config to global agent paths for compatibility |
--daemon-timeout N | Seconds to wait for daemon ready (default: 15) |
-- <args> | Pass remaining args verbatim to the agent |
Skill Sync
Section titled “Skill Sync”To resolve and materialize effective skills for an active domain/mission:
edgeplane data sync status --domain-id <id> --mission-id <optional-id>Next Steps
Section titled “Next Steps”- Concepts: Domains, Missions & Tasks — the organizational model
- Reference: CLI — full command surface
- Reference: edgeplaned Daemon — secrets brokering and daemon internals