Skip to content

AI Coding Agent Gateway

Codex Pooler can act as a self-hosted gateway for trusted AI coding agents. Operators run Codex Pooler themselves, connect authorized upstream Codex accounts to Pools, issue stable Pool API keys to agent clients, and route supported Codex backend or narrow /v1 requests through Pool policy without exposing upstream account secrets to every workstation or automation host.

An AI coding agent gateway is the controlled runtime boundary between coding agents and the model-provider capacity they use. In Codex Pooler, that boundary authenticates Pool API keys, chooses eligible upstream accounts, preserves continuity for stateful Codex work, and records metadata-only operational evidence.

The gateway does not replace account authorization. It coordinates accounts you are allowed to operate and keeps client credentials, routing policy, operator metadata, and upstream secret storage in separate product surfaces.

Agent or tool shapeUse this routeCredentialRead next
Codex CLI and Codex Desktop/backend-api/codexPool API keyCodex CLI and Codex Desktop
Selected OpenAI SDK-compatible agents/v1Pool API keyOpenAI-compatible SDKs
Aider, Continue, Cline, Goose, Kilo, OpenCode, OpenClaw, OpenHands, OMP, Pi, Hermes, Trae, and WindmillClient-specific /v1 or backend route documented on each setup pagePool API key for runtime model workClient setup index
Operator metadata tools/mcpOperator-owned MCP tokenOperator admin UI
  1. Deploy Codex Pooler with Docker Compose or the Helm chart.
  2. Create the first owner, then create a Pool for the agent clients.
  3. Add or import authorized upstream Codex accounts and assign usable accounts to the Pool.
  4. Create a Pool API key for runtime clients and store the raw key in each trusted agent environment.
  5. Configure Codex backend clients with https://codex-pooler.example.com/backend-api/codex.
  6. Configure selected OpenAI SDK-compatible clients with https://codex-pooler.example.com/v1.
  7. Add /mcp only for trusted operator metadata hosts, using an operator MCP token instead of the Pool API key.

Codex Pooler is not documented as a hosted provider, a general OpenAI API clone, or a way to bypass account terms and limits. It does not provide full OpenAI API parity, and /v1/realtime plus OpenAI Realtime SDK websocket or session routes are unsupported.

The operator MCP endpoint is separate from /backend-api and /v1. It is metadata-only and read-only, and it is not a /v1/responses remote MCP bridge.

Public docs describe request logs, audit logs, and MCP output as metadata-only. Safe examples can mention route family, endpoint path, method, status class, Pool label, upstream label, model name, retry count, duration, token count, and timestamps.

Raw prompts, completions, request bodies, response bodies, multipart bodies, websocket frames, file bytes, audio bytes, image bytes, bearer tokens, Pool API keys, MCP tokens, upstream secrets, and Codex auth.json material must not appear in public examples, docs, logs, screenshots, tickets, or prompts.