Trusted Domains

What are Trusted Domains?

Trusted domains are domains that can be used with the AZTP Client for secure identity issuance and linking.

• For quick testing and development, the following domains are pre-whitelisted and available out of the box:
  • gptarticles.xyz
  • gptapps.ai
  • vcagents.ai
• For production or real-world use, you can add your own domain as a trust domain via the astha.ai portal (opens in a new tab).
  • To add a custom domain, you must verify ownership (e.g., by adding a DNS TXT record with your DNS provider such as Namecheap, GoDaddy, Cloudflare, etc.).
  • Once verified, your domain will be available for secure identity issuance and linking in your AZTP workflows.

Why Trusted Domains Matter

AZTP identities are structured like this:

aztp://<trusted-domain>/<agent-or-tool-name>

For example:

aztp://astha.cloud/paypal-payment-tool

Here, astha.cloud is the trusted domain.

To prevent impersonation and ensure security, you must prove you own a domain before you can issue identities for agents or tools under that domain. This proof of ownership is enforced by requiring you to verify your domain (e.g., by adding a DNS TXT record).

Without this verification, anyone could create fake identities using domains they don't control (like aztp://apple.com/fake-agent), which would break the trust model.

In summary:

• Only verified domain owners can issue AZTP identities for their domain.
• This ensures that all agent and tool identities are trustworthy and cannot be spoofed by random developers.

How to Use Trusted Domains

• Use the trustDomain parameter when issuing or linking identities.
• Check available trusted domains in your client:

TypeScript/JavaScript:

import { whiteListTrustDomains } from 'aztp-client';
console.log('Available trusted domains:', whiteListTrustDomains);

Python:

from aztp_client import whiteListTrustDomains
print('Available trusted domains:', whiteListTrustDomains)