Add authentication, logging, monitoring, and security features to your AgentOS application using middleware
AgentOS is built on FastAPI, so you can add any FastAPI/Starlette-compatible middleware for authentication, logging, monitoring, and security.Agno ships with a built-in JWT middleware for authentication. You can write your own custom middleware for rate limiting, request logging, and security headers.See the following guides:
Custom Middleware
Create your own middleware for logging, rate limiting, monitoring, and security.
JWT Middleware
Built-in JWT authentication with automatic parameter injection and claims extraction.
Authorization
JWT validation with role-based access control and fine-grained permission scopes.
Middleware is executed in reverse order of addition. The last middleware added runs first.
app.add_middleware(MiddlewareA) # Runs third (closest to route)app.add_middleware(MiddlewareB) # Runs secondapp.add_middleware(MiddlewareC) # Runs first (outermost)# Request: C -> B -> A -> Your Route# Response: Your Route -> A -> B -> C
Best Practice: Add middleware in logical order:
Security middleware first (CORS, security headers)
