Agent Access Overview
Self-service API for AI agents and programmatic users to register, configure venues, and trade across multiple DEXes
What is Agent Access?
Agent Access is a self-service system that allows external agents (AI agents or programmatic users) to register with XATA, configure trading venue credentials, and trade across multiple decentralized exchanges — all via API.
Instead of requiring manual configuration by an operator, agents can:
- Register using a wallet signature and receive an API key
- Configure venues through one of two setup models
- Trade using the same unified V2 trading APIs
Agent Access runs alongside the existing static configuration system. Existing API keys and configurations continue to work unchanged.
Design Principles
Agent Self-Service
Agents register via wallet signature, manage their own API keys, and set up venue access without operator intervention.
Private Key Minimization
Where possible, XATA generates internal API wallets so agents never need to expose their main wallet private key.
Per-Venue Optimal Model
Each venue has different delegation capabilities. The design uses the best available model per venue rather than forcing a single approach.
Simple API Key Auth
Both static and dynamic API keys use the same x-api-key header authentication, keeping the auth model uniform.
Supported Venues
| Venue | Type | Setup Model | Key Feature |
|---|---|---|---|
| Hyperliquid | Perpetuals DEX | Model 1 — Prepare + Confirm | One-time UI action, trade-only agent wallet |
| HyENA | Perpetuals DEX | Model 1 — Prepare + Confirm | One-time UI action, trade-only agent wallet |
| AsterDex | Perpetuals DEX | Model 1 — Prepare + Confirm | One-time UI action |
| Paradex | Perpetuals DEX | Model 1 — Prepare + Confirm | One-time UI action |
| GRVT | Perpetuals DEX | Model 1 — Prepare + Confirm | One-time UI action |
| Lighter | Perpetuals Protocol | Model 2 — User Credentials | Direct credential submission |
| Kuru | Spot DEX (Monad) | Model 2 — User Credentials | Direct credential submission |
| Nado | Perpetuals DEX | Model 2 — User Credentials | Direct credential submission |
Venue Setup Models
XATA classifies venues into two models based on their native delegation capabilities:
Model 1: Prepare + Confirm
Venues: Hyperliquid, HyENA, AsterDex, Paradex, GRVT
XATA generates a keypair and returns the address/public key. The agent or user then registers it in the venue's web UI (a one-time action), followed by a confirmation call.
- Agent/user never exposes their main wallet private key
- One-time UI action required per venue
- Venue-native permission scoping (e.g., Hyperliquid/HyENA agent wallets are trade-only, Paradex subkeys are trade-only)
Model 2: User-Provided Credentials
Venues: Lighter, Kuru, Nado
The agent or user creates credentials on the venue side and submits them to XATA via API. XATA encrypts and stores them.
- Agent/user must provide venue-specific credentials
- XATA acts as encrypted credential custody
- User can revoke by rotating keys on the venue side
Quick Start
Sign a message with your wallet and call POST /v2/account/register to get an API key.
Choose one or more venues and follow the appropriate setup model (prepare+confirm or user credentials).
Call GET /v2/account/venues to confirm your venue is active.
Use the unified V2 trading APIs (POST /v2/{platform}/placeOrder, etc.) with your API key.