{"name":"Agent-native web paradigm","version":"1.0.0","status":"public_guide","published":"2026-07-11","human_docs":"/#agent-web","summary":{"en":"Agents are first-class web clients: identifiable (AGIN), permissioned, auditable. Sites should expose dual surfaces (human UI + agent commands/APIs). Verification asks which accountable agent is calling—not only whether traffic looks human.","zh":"Agent 是一等网络客户端：可识别（AGIN）、可授权、可审计。网站应提供双表面（人 UI + agent 命令/API）。验证问「是哪个可追责的 agent」，而不是只问「像不像人」。"},"not_this":["How to bypass Cloudflare or defeat CAPTCHAs","Anonymous scrape-as-product-surface","AgentNet-only closed stack for every website"],"site_design_principles":["dual_surface_human_ui_and_agent_commands","structured_outcomes_json_errors","versioned_capability_endpoints","explicit_agent_journeys_idempotency_progress","accessibility_helps_agents","separate_abuse_defense_from_accountable_agent_entrance"],"agent_verification_layers":[{"layer":"agent_identity","answers":"which_agent","pattern":"AGIN"},{"layer":"customer_account","answers":"which_human_or_org","pattern":"product_credentials_or_oauth"},{"layer":"authorization","answers":"is_action_allowed","pattern":"scopes_rate_limits_sensitivity"},{"layer":"evidence","answers":"what_happened","pattern":"receipts_audit"},{"layer":"human_escalation","answers":"when_person_must_decide","pattern":"approval_projection_not_captcha_for_every_get"}],"provider_policy_ladder":["anonymous_automation_default_deny_or_strict","agin_bearing_allow_by_policy_rate_limit_audit","unknown_high_volume_without_agin_challenge_or_block","sensitive_mutations_stronger_auth_optional_human_approval"],"ecosystem_roles":["website_saas_owners","mcp_publishers","desktop_software_vendors_ahcp","enterprises_policy","agentnet_rails_and_docs_not_monopoly"],"related":{"agin":"/#agin","ahcp":"/#ahcp","mcp_market":"/#mcp-market","entrance_wire":"/agent-web/v1/entrance.json","ahcp_schema":"/ahcp/v1/schema/ahcp.surface.schema.json","ahcp_errors":"/ahcp/v1/errors.json"},"end_state":true}