Skip to content
dAvePi

Agents — overview

A davepi agent is a chat process that talks to your dAvePi backend through its MCP server. It ships as the @davepi/agent package — pre-wired for HTTP /chat, Slack, OpenAI / Anthropic / Ollama providers, two auth modes, and a learning layer (persona, memory, skills, profiles) backed by tenant-isolated davepi schemas.

┌──────────────┐     SSE / Slack / DM      ┌──────────────┐    MCP / HTTP    ┌──────────────┐
│  end-user    │  ─────────────────────▶   │  davepi      │  ──────────────▶ │  davepi      │
│  (or widget) │                           │  agent       │                  │  backend     │
└──────────────┘                           │  (this pkg)  │                  │  (your app)  │
                                           └──────┬───────┘                  └──────┬───────┘
                                                  │                                 │
                                                  │  Anthropic / OpenAI / Ollama    │  MongoDB
                                                  ▼                                 ▼

The agent is the interactive counterpart to @davepi/mcp. Where @davepi/mcp is a stdio↔HTTP bridge so a developer tool (Claude Desktop, Cursor) can act as a privileged operator against your backend, @davepi/agent is a process you run to host an end-user-facing chatbot.

The one design rule

Section titled “The one design rule”

The JWT (or X-Client-Id) is the access boundary. The agent never re-implements ACL checks and never constrains results via prompt text. If you want a public storefront bot to only see “published” products, declare a schema.acl.scope[role] filter on the davepi side; the MCP server applies it on every read and the agent never sees the filter.

The wrong pattern, and the one to avoid, is a broad service token plus “only show user X’s data” in the prompt — that’s a confused-deputy bug waiting to happen.

Persona, memory, skills, and customer-profile snapshots shape behaviour and tone. They are never an access-control mechanism. Live, sensitive data is always reached by a tool call under the caller’s identity.

What you get

Section titled “What you get”
CapabilityOut of the box
ChannelsHTTP /chat (SSE), Slack (@-mention + DM). Telegram / WhatsApp / widget templates.
LLM providersAnthropic (default), OpenAI, Ollama (local, no key)
Tool surfaceEvery schema’s CRUD + relations + aggregations + audit + file ops auto-derived from the MCP server.
Tool routerAbove AGENT_TOOL_LIMIT (40) the model picks a resource first, then loads its tools.
Render toolsrender_table and render_chart — channel-neutral structured output.
AuthService-account (one JWT or client id) OR per-user (OAuth-style link flow).
Learning layerPer-agent persona, slow-changing memory, per-end-user profile, governed skills (runbooks).
Conversation historyPersisted to davepi’s conversation schema, with a frozen prompt snapshot for cache stability.
Proactive jobsPair with davepi-plugin-cron to fire approved skills on a schedule.
Programmatic APIcreateAgent / runTurn / mcpClient for embedding in your own process.

Two mental models

Section titled “Two mental models”

Service-account agent

Section titled “Service-account agent”

One identity for the whole bot — right for anonymous storefronts (client id paired with schema.acl.scope[role] filters) and internal “shared inbox” bots. Easiest to deploy: one bearer token, no per-user linking, no refresh-token store.

→ Auth modes

Per-user agent

Section titled “Per-user agent”

Each channel user maps to a real davepi user via a one-time link flow (email + password form served by the agent itself). The agent stores refresh tokens locally and mints access tokens on demand. Right for customer-portal bots where each user must see only their own data, enforced by davepi’s normal owner-scoping.

Where to start

Section titled “Where to start”
If you want to…Read
Boot an agent against a local davepi in 10 minutesGetting started
Look up an environment variable or config fieldConfiguration reference
Give your agent a voice and durable memoryPersonas, memory, and skills
Wire Slack, or build a custom channel adapterChannels
Decide between service and per-user authAuth modes
Understand tool routing or the render toolsTools and rendering
Schedule SLA digests, follow-ups, or daily summariesProactive agents
Embed the agent in your own Node processProgrammatic API
Diagnose a stuck link flow or a 401Troubleshooting

How this section relates to the rest of the docs

Section titled “How this section relates to the rest of the docs”
  • Surfaces → Agent is the reference page — env vars, install command, one-line examples. This section is the guide — task-shaped, with worked examples.
  • Tutorials build an end-to-end app (schema + admin + agent + Slack). They include agent steps but the agent is one component. Read those after you’ve shipped your first agent here.
  • Concepts → Why agents come first is the framework-level argument for why dAvePi is built this way. This section assumes you already buy that argument and want to ship.

A note on multiple agents per tenant

Section titled “A note on multiple agents per tenant”

One tenant can run many agents — support, sales, billing-ops, onboarding. Each one is a distinct process with its own AGENT_KEY, persona row, memory row, and skill set; they share the tenant’s customerProfile rows (what support learned about a customer benefits sales too). Personas, memory, and skills walks through the multi-agent identity model end to end.