gumloop login and use environment variables instead.
Login

OAuth (recommended)
- The CLI starts a tiny one-shot web server on
localhost:8765to receive the OAuth redirect. - Your browser opens to the Gumloop consent screen — click Allow.
- Gumloop redirects back to
localhost:8765, the CLI captures the auth code, exchanges it for tokens, and shuts the server down. - Both the access token and refresh token are saved to your OS keychain. Expired access tokens are refreshed automatically — you should not need to re-run
gumloop loginuntil you explicitlylogout.
localhost:8765 on the remote box (use SSH port-forwarding if needed: ssh -L 8765:localhost:8765 user@host).
Other options:
API key
- API key — generate one on the Connectors page. Requires the Pro plan or above.
- User ID — your Gumloop user ID, also visible on the Profile Settings page.
/proc/<pid>/cmdline on Linux), pipe it in via stdin with -:
- trick works for --access-token.
Verification
gumloop login calls a lightweight read endpoint (models.list) before saving anything. If the credential is invalid, nothing is written to the keychain.
Logout
Environment variables
These override stored credentials for a single invocation, which makes them ideal for CI, containers, and headless servers.
Example: GitHub Actions step
Where credentials are stored
The CLI writes the following entries under thegumloop-cli keyring service:
Inspect them with your OS tooling (Keychain Access on macOS,
secret-tool / kwallet-query on Linux) or wipe them with gumloop logout.
