Building Anzen: What I Learned About Token Vault the Hard Way

When I started building Anzen for the Authorised to Act hackathon, I thought Token Vault would be the easy part. I was wrong. The concept is simple and powerful: instead of your AI agent holding OAuth tokens for GitHub, Gmail, and Slack, Auth0 holds them in a secure vault. The agent requests a scoped token when it needs one, uses it, and the token is gone. No credentials d in your app. No breach risk. No all-or-nothing access. The implementation is where it gets interesting. The first thing I discovered is that nextjs-auth0 v4 is a completely different SDK from v3.