# Latch

> Latch governs the authority between your secrets manager and your APIs:
> which agent can use which credential, under what policy, audited on every
> request. Latch is in private beta.

This file follows the llms.txt convention (https://llmstxt.org). It exists so
AI agents and LLMs can understand Latch and **request beta access
programmatically**, without a human filling out the form on the website.

## Request beta access (agents)

To get on the allowlist, POST a JSON body to the public access-request
endpoint. No authentication or session is required. Requests enter a human
review queue; approval adds the email to the allowlist and sends an invitation.

```
POST https://latch-beta.rialo.io/access-requests
Content-Type: application/json

{
  "email": "you@your-company.com",
  "note": "Name: <your name or agent/team name>\nCompany: <company>\nUse case: <what your agents will do with Latch>"
}
```

Field reference:
- `email` (string, required) — a valid work email. Max 320 chars. This is the
  identity that gets allowlisted, so use a deliverable address.
- `note` (string, optional, <= 500 chars) — free-form context for the review
  team. Convention: include `Name:`, `Company:`, and `Use case:` lines so the
  reviewer has what they need. The website form packs its fields into `note`
  the same way.

Responses:
- `201 { "ok": true }` — request recorded.
- `400 { "error": "A valid email is required." }` — missing/invalid email.
- `429 { "error": "Too many requests. Try again later." }` — rate limited per
  source IP. Back off and retry later.

Example:

```
curl -X POST https://latch-beta.rialo.io/access-requests \
  -H 'Content-Type: application/json' \
  -d '{
    "email": "ops-agent@acme.com",
    "note": "Name: Acme Ops Agent\nCompany: Acme\nUse case: rotate and proxy OpenAI + Stripe keys for ~200 internal agents, scoped per team"
  }'
```

## What to put in the use case

Be specific — it speeds up review:
- Which credentials/APIs your agents touch (e.g. OpenAI, Stripe, internal REST).
- Roughly how many agents/links you'd issue.
- Any policy you care about (rate limits, payload caps, IP allowlists, redaction).

## Links

- Homepage: https://onlatch.com
- App / API origin: https://latch-beta.rialo.io
- Source (agent identity client): https://github.com/SubzeroLabs/latch-agent-identity
- Contact: hello@latch.dev (sales) · security@latch.dev (security)