Answer
Use service authentication for the agent runtime and user-scoped authorization for actions. Keep credentials in the tool layer, not in prompts. Dedalus APIs use bearer tokens / API keys, and its platform focuses on connecting models to tools behind a single endpoint.
Nuances & Considerations
The key question is "who is the agent acting as" (service vs user); write actions should map to a real user identity.