AI Publisher - The "Authorized to Act" AI Agent

AI Publisher — Project Creation & AI Assistant Workspace
AI Publisher — AI Content Copywriting & Pricing Strategy
AI Publisher — Social Platform & Target Destination Selection
Authorized to Act: Live Autonomous Agent Execution
AI Publisher — Project Management & Portfolio Overview
AI Publisher — Final Bundle Preview & Pipeline Launch
AI Publisher — Successful Autonomous Project Launch
AI Publisher — Secure Token Vault & AI Configuration
AI Publisher — Autonomous Marketing Dashboard
AI Publisher — Asset Management & Live Production Preview

💡 Inspiration

Digital marketing has become complex and time-consuming. Current tools either require constant manual intervention or force users to share sensitive credentials with insecure third-party apps. We wanted to create an agent capable of acting autonomously while ensuring bank-grade security for the user's social media access.

🚀 What it does

AI Publisher is a platform where users connect their social media accounts once via Auth0. From there, the AI agent takes over:

Autonomous Content Analysis: The AI deep-scans your product assets (digital or physical) to understand context and value.
Cross-Platform Strategy: It generates optimized, platform-aware marketing content (images, hashtags, and high-energy descriptions).
Seamless Execution via Token Vault: The agent leverages Auth0 Token Vault to publish directly, eliminating the need for manual token handling or insecure storage.

🛠️ How we built it (Architecture & Token Vault)

The core of our innovation lies in the integration of Auth0 to secure AI agents:

Unique Identity: Users authenticate via Auth0.
Secure Social Connections: We use Auth0's "Custom Social Connections" to link Facebook, Instagram, Twitter, and Pinterest.
The Token Vault Principle: This is the centerpiece. Instead of storing IDP Access Tokens in our own database (which would be risky), we keep them in Auth0's secure vault.
- The backend uses the Auth0 Management API to temporarily retrieve the necessary token from the Identity Vault.
- The agent thus acts on behalf of the user in an "Authorized" manner without ever exposing secret keys.

🛡️ Why Auth0? (The Identity-First AI Approach)

Traditional AI tools often ask for user passwords or insecure long-lived tokens. By building on Auth0, we achieve:

Least Privilege Access: Agents only get the "scopes" they need for specific tasks.
User Trust: Users see exactly what the agent is authorized to do during the OAuth consent flow.
Scalability: As we add more platforms (Pinterest, TikTok), Auth0's centralized identity management handles the heavy lifting of OAuth handshakes.

🤖 AI Agents & Brain Interaction

Our platform operates with a multi-layered autonomous agent architecture, where each agent has a specific role, all powered by a central AI Brain.

Metadata Agent (The Analyst): Scans uploaded assets (images/videos) using vision-language models to automatically generate SEO-optimized titles, descriptions, and tags.
Marketing Agent (The Distributor): The "executive arm" of the platform. It takes analyzed metadata and crafts platform-specific content (tweets, FB posts, IG captions), then uses secure Auth0-delegated tokens to publish autonomously.
Optimizer Agent (The Consultant): Analyzes engagement metrics and provides data-driven recommendations to maximize reach and conversions.

The "AI Brain" Flexibility: Users can hot-swap the underlying LLM (the "Brain") in the settings. Whether leveraging the speed of Groq, the multi-modal depth of Gemini, or the reasoning of OpenAI, the agents adapt their strategies instantly to the chosen engine.

⚙️ Tech Stack

Frontend: Next.js 15, Vanilla CSS, TypeScript.
Authentication & Security: Auth0 (Next.js SDK & Management API).
Agent Infrastructure: Custom Node.js architecture for Identity Provider (IDP) API calls.
Social APIs: Meta Graph API, Twitter v2 API, Pinterest API.

🧠 Challenges we ran into

The biggest challenge was managing multi-platform tokens. Each social network has its own validity periods and permissions. Using the Token Vault allowed us to centralize this complexity and ensure that tokens are always fresh and secure.

🏆 Accomplishments that we're proud of

We successfully created a flow where the AI can truly "act" (Authorized to Act) rather than just "suggest." This is a paradigm shift for automation tools.

📚 What we learned

We discovered the power of Identities in Auth0 for managing AI agents. We learned that it's possible to delegate complex actions (like publishing photos to specific Facebook Pages) while maintaining strict security control.

🔮 What's next for AI Publisher (Vision & CIBA)

Our project is just the beginning:

Human-in-the-Loop Validation: Moving forward, we plan to implement Auth0 CIBA (Client-Initiated Backchannel Authentication). This will allow the agent to trigger a push notification on the user's mobile device for final consent before any critical publication.
Intelligent Feedback Loops: Adding self-optimization cycles where the agent learns from post performance to refine future marketing strategies automatically.

Built With

next.js
typescript
vanilla-css

Updates

mustapha Chaibi started this project — Apr 08, 2026 10:23 AM EDT

Leave feedback in the comments!

Log in or sign up for Devpost to join the conversation.