actx setup
actx setup
Section titled “actx setup”Launch the post-login onboarding wizard. Provides an interactive menu to configure LLM API credentials using one of three methods:
- Direct paste — encrypted on disk using AES-256-GCM
- 1Password vault — backed by a Service Account for zero-knowledge credential resolution
- Environment variables — skip and use standard
OPENAI_API_KEY,ANTHROPIC_API_KEY, etc.
actx setupHow It Works
Section titled “How It Works”$ actx setup🧙 AgentCTX Setup Wizard
Logged in as: developer@example.com Organization: acme-corp
How would you like to provide LLM credentials?
1. Paste API keys directly (encrypted on disk) 2. Connect 1Password Service Account (vault-backed) 3. Skip — I'll use environment variables
Select option (1/2/3): 1
Which LLM providers do you want to configure?
1. OpenAI 2. Anthropic 3. Google AI 4. Done — return to menu
Select provider (number): 1 Paste OpenAI API key: •••••••••••••••• ✅ OpenAI key encrypted and stored.
───────────────────────────────────────── ✅ Configured: openai
Run `actx start` to launch the gateway. Credentials resolve automatically.Credential Storage
Section titled “Credential Storage”When using option 1 (direct paste):
- Each key is encrypted independently with AES-256-GCM
- Encryption key is derived from the project’s Ed25519 keypair via HKDF
- Stored as
.context/.keys/cred-{provider}.enc - A masked metadata file (
.meta) is written alongside for display without decryption - All files in
.context/.keys/are gitignored
When using option 2 (1Password):
- Store LLM keys in your vault as items titled
llm-{provider}with a field labeledapi-key - The gateway resolves credentials automatically at startup
See Also
Section titled “See Also”- actx auth — configure 1Password separately
- actx login — authenticate before running setup
- actx start — launch the gateway with auto-resolved credentials