Authentication

Seqera AI CLI is in beta

Seqera AI CLI is currently in beta. Features and commands may change as we continue to improve the product.

note

Seqera Cloud users receive $20 in free credits to get started with Seqera AI. Contact us for additional credits.

Seqera AI uses your Seqera Platform account for authentication. This page describes authentication concepts and step-by-step instructions for managing your sessions.

Credential storage

Seqera AI stores authentication tokens securely in your operating system's secure keychain:

macOS: Keychain Access
Linux: Secret Service (GNOME Keyring, KWallet)
Windows: Windows Credential Manager

If keychain access isn't available, tokens are stored in:

~/.config/seqera-ai/refresh-token.<profile>

Session metadata (e.g., email, login timestamp) is stored in:

~/.config/seqera-ai/auth-state.json

Token refresh

Seqera AI CLI automatically refreshes your authentication token when needed. You are not required to log in again unless:

You explicitly log out
Your refresh token expires (typically after extended inactivity)
Your Seqera Platform account permissions change

Authenticating Seqera AI

Log in

To authenticate with your Seqera Platform account, run:

seqera login

This will:

Open your default browser to the Seqera login page
Prompt you to sign in with your Seqera Platform credentials
Automatically capture the authentication token

Display a success message in your terminal

Opening browser for authentication...
Successfully authenticated as user@example.com

View session status

To view your current authentication status, run:

seqera status

You should see output similar to:

Logged in as: user@example.com
Session expires: 2025-12-16 14:30:00

Add access tokens for automation

For automated environments, you can provide a Seqera Platform access token directly:

seqera ai --token <PLATFORM_ACCESS_TOKEN>

You can also set the token via environment variable:

export TOWER_ACCESS_TOKEN=<PLATFORM_ACCESS_TOKEN>
seqera ai

This shows your login status, authenticated email, and session details.

Log out

Standard logout

To sign out from the current session, run:

seqera logout

This command revokes your current authentication token and removes locally stored credentials. You will need to re-authenticate on next use.

Clear all sessions

To remove all profiles and completely reset authentication, run:

seqera logout --all

This command removes all stored credentials and session data.

Learn more

Seqera AI CLI: Seqera AI CLI overview
Installation: Detailed installation instructions
Command approval: Control which commands run automatically
Use cases: Seqera AI use cases
Troubleshooting: Troubleshoot common errors

Credential storage​

Token refresh​

Authenticating Seqera AI​

Log in​

View session status​

Add access tokens for automation​

Log out​

Standard logout​

Clear all sessions​

Learn more​