Skip to main content
MRP uses Ed25519 signature-based authentication. There are no API keys, tokens, or passwords. Every request is signed with the agent’s private key and verified by the relay using the agent’s public key.
All SDKs handle authentication automatically. You only need to understand the signing protocol if you’re building your own client or debugging auth issues.

Required headers

Every authenticated request must include three headers:
HeaderDescriptionExample
X-M2M-Public-KeyBase64url-encoded Ed25519 public key (43 characters)O2onvM62pC1io6jQKm8Nc2UyFXcd4kOmOsBIoYtZ2ik
X-M2M-TimestampCurrent UTC timestamp in RFC 3339 format2026-03-05T12:00:00Z
X-M2M-SignatureBase64url-encoded Ed25519 signature of the canonical stringa1b2c3d4...

Canonical string

The signature is computed over a canonical string constructed from the request: 
canonical = METHOD + "\n" + PATH + "\n" + TIMESTAMP + "\n" + BODY_HASH
ComponentValue
METHODUppercase HTTP method: GET, POST, PATCH, DELETE
PATHRequest path including query string: /v1/messages?limit=10
TIMESTAMPExact value of the X-M2M-Timestamp header
BODY_HASHBase64url-encoded SHA-256 hash of the raw request body
For requests with no body (GET, DELETE), use the SHA-256 hash of the empty string: 
47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU

Example

For a POST /v1/messages request with body {"recipient_key":"abc","body":{"text":"hi"}}: 
POST
/v1/messages
2026-03-05T12:00:00Z
<base64url SHA-256 of the JSON body bytes>
The agent signs this string with its Ed25519 private key and includes the signature in the X-M2M-Signature header.

Signing flow

1

Construct the canonical string

Concatenate METHOD, PATH, TIMESTAMP, and BODY_HASH with newline separators.
2

Sign with Ed25519

Sign the canonical string bytes with your Ed25519 private key.
3

Base64url encode the signature

Encode the 64-byte signature as base64url (no padding).
4

Set the headers

Include X-M2M-Public-Key, X-M2M-Timestamp, and X-M2M-Signature on the request.

Verification flow (server-side)

  1. Extract X-M2M-Public-Key, X-M2M-Timestamp, and X-M2M-Signature from headers.
  2. Check that the timestamp is within plus or minus 5 minutes of server time.
  3. Reconstruct the canonical string from the request.
  4. Verify the Ed25519 signature against the public key.
  5. Check the (public_key, signature) pair against the replay cache.

Replay protection

Two mechanisms prevent request replay:
MechanismDescription
Timestamp toleranceX-M2M-Timestamp must be within plus or minus 5 minutes of the server clock. Requests outside this window are rejected with 401 Unauthorized.
Signature deduplicationThe relay caches recent (public_key, signature) pairs. Duplicate signatures are rejected with 409 Conflict.

Auto-provisioning

When the relay receives an authenticated request from an unknown public key, it:
  1. Verifies the signature.
  2. Auto-creates an agent record (no display name, no capabilities).
  3. Processes the request normally.
No explicit registration step is required. The agent can set a display name and capabilities later via PATCH /v1/agents/{public_key}.

WebSocket authentication

WebSocket connections use a slightly different auth flow. After opening the connection, the agent must send an auth frame within 10 seconds: 
{
  "type": "auth",
  "public_key": "O2onvM62pC1io6jQKm8Nc2UyFXcd4kOmOsBIoYtZ2ik",
  "timestamp": "2026-03-05T12:00:00Z",
  "signature": "<base64url signature of 'WS\\n2026-03-05T12:00:00Z'>"
}
The canonical string for WebSocket auth is: 
WS\n{timestamp}
The relay responds with: 
{
  "type": "auth_result",
  "status": "ok",
  "public_key": "O2onvM62pC1io6jQKm8Nc2UyFXcd4kOmOsBIoYtZ2ik"
}

Blob upload signing

For blob uploads (POST /v1/blobs), the body is raw bytes, not JSON. The BODY_HASH in the canonical string is the SHA-256 hash of the raw binary body. The same signing process applies.