CrewAI Agent

What it does

This example demonstrates the grantex-crewai integration by building CrewAI tools with Grantex scope enforcement:

Register an agent and obtain a grant token via the sandbox flow
Create scoped tools using create_grantex_tool — each tool is bound to a specific scope (calendar:read, email:send)
Wrap tools with with_audit_logging to automatically log every invocation to the Grantex audit trail
Invoke tools directly (in a full CrewAI crew, the LLM would select and call these tools)
Demonstrate scope enforcement — attempting to create a tool with account:delete (a scope not in the grant) raises a PermissionError
Inspect the audit trail to see the logged actions

Start the local Grantex stack from the repository root:

docker compose up --build

In a separate terminal, run the example:

cd examples/crewai-agent
pip install -r requirements.txt
python main.py

Agent registered: ag_01HXYZ...
Grant token received, grantId: grnt_01HXYZ...
Tools created: read_calendar, send_email
Audit logging attached

--- Invoking read_calendar ---
Result: {"events": [{"title": "Team standup", "time": "9:00 AM", "query": "today"}, {"title": "Design review", "time": "2:00 PM", "query": "today"}]}

--- Invoking send_email ---
Result: Email sent successfully: "Meeting summary: standup at 9 AM, design review at 2 PM"

--- Testing scope enforcement ---
Scope check blocked unauthorized tool: Grant token does not include required scope "account:delete". Granted scopes: calendar:read, email:send

--- Audit trail ---
  [success] read_calendar — 2026-02-28T12:00:00.000Z
  [success] send_email — 2026-02-28T12:00:01.000Z

Done! CrewAI integration demo complete.

Variable	Default	Description
`GRANTEX_URL`	`http://localhost:3001`	Base URL of the Grantex auth service
`GRANTEX_API_KEY`	`sandbox-api-key-local`	API key. Use a sandbox key for auto-approval