Skip to content
Demo
DemoSample data — nothing here is real; refresh to reset.
Book a demo →
CONNECT AN APP3 steps · one base-URL swapREPOINT NO CODE CHANGE--:--:--
WAITING FOR FIRST CALL…polling /v1/events every 3s · this flips the moment a call lands at the gateway
1STORE PROVIDER KEYenvelope-encrypted · never shown again
ProviderLabelLast4FingerprintState
anthropicprod••••9f213e:9a:c4:71● STORED

Stored server-side, envelope-encrypted with a per-tenant DEK, and never shown again. A stolen database is inert — only the last 4 and a fingerprint are ever surfaced. Prysm decrypts to forward each call; the plaintext key never returns to this screen.

2MINT GATEWAY TOKENshown once · only a SHA-256 hash + prefix are stored
3POINT YOUR CLIENT AT PRYSMbase URL · Bearer · x-prysm-principal
Base URL
https://prysm-gateway.internal/anthropic
Authorization
Bearer prysm_sk_live_…
Header
x-prysm-principal: support-copilot

Swap the provider base URL for the gateway and add one header that carries the agent identity. No SDK change beyond the URL — every call is now named, metered, and killable.

curl https://prysm-gateway.internal/anthropic/v1/messages \
  -H "Authorization: Bearer $PRYSM_TOKEN" \
  -H "x-prysm-principal: support-copilot" \
  -H "content-type: application/json" \
  -d '{
    "model": "claude-haiku-4-5-20251001",
    "max_tokens": 256,
    "messages": [{"role":"user","content":"ping"}]
  }'

Send the request above, then the ● waiting for first call… banner at the top flips to .

Command Palette

Search for a command to run...