agent-ads
Authentication

Auth

Each engine has its own credential model. The CLI resolves secrets with a fixed precedence: shell env > OS credential store. Secrets never come from flags or config files.

Cross-provider status
Check all configured providers
bash
agent-ads auth status
Meta

Meta Authentication

Meta requires an access token with ads_read permission. Optionally add business_management to discover businesses and ad accounts.

Store token
Persist to OS credential store
bash
agent-ads meta auth set
Environment override
One-off session token
bash
export META_ADS_ACCESS_TOKEN=EAABs...
Google Ads

Google Ads Authentication

Google Ads requires a developer token, OAuth client ID/secret, and a refresh token. All four values go into the OS credential store.

Store credentials
Guided auth setup
bash
agent-ads google auth set
TikTok

TikTok Authentication

TikTok uses app credentials (app ID + secret) to obtain a 24-hour access token. The CLI handles token refresh.

Store credentials
Guided auth setup
bash
agent-ads tiktok auth set
Refresh
Refresh an expired token
bash
agent-ads tiktok auth refresh
Pinterest

Pinterest Authentication

Pinterest uses OAuth with app ID, app secret, and a refresh token. Tokens are stored in the OS credential store.

Store credentials
Guided auth setup
bash
agent-ads pinterest auth set
Refresh
Refresh an expired token
bash
agent-ads pinterest auth refresh
LinkedIn

LinkedIn Authentication

LinkedIn uses an access token only. Store it in the OS credential store or override it from the shell for one-off sessions.

Store token
Guided auth setup
bash
agent-ads linkedin auth set
Environment override
One-off session token
bash
export LINKEDIN_ADS_ACCESS_TOKEN=access-token