Anthropic officially bans using subscription auth for third party use

https://code.claude.com/docs/en/legal-and-compliance

85•theahura•1h ago

Comments

theahura•1h ago

From the legal docs:

> Authentication and credential use

> Claude Code authenticates with Anthropic’s servers using OAuth tokens or API keys. These authentication methods serve different purposes:

> OAuth authentication (used with Free, Pro, and Max plans) is intended exclusively for Claude Code and Claude.ai. Using OAuth tokens obtained through Claude Free, Pro, or Max accounts in any other product, tool, or service — including the Agent SDK — is not permitted and constitutes a violation of the Consumer Terms of Service.

> Developers building products or services that interact with Claude’s capabilities, including those using the Agent SDK, should use API key authentication through Claude Console or a supported cloud provider. Anthropic does not permit third-party developers to offer Claude.ai login or to route requests through Free, Pro, or Max plan credentials on behalf of their users.

> Anthropic reserves the right to take measures to enforce these restrictions and may do so without prior notice.

spullara•41m ago

why wouldn't they just make it so the SDK can't use claude subs? like what are they doing here?

adastra22•33m ago

When your company happens upon a cash cow, you can either become a milk company or a meat company.

akulbe•1h ago

Is this a direct shot at things like OpenClaw, or am I reading it wrong?

baconner•57m ago

For sure, yes. They already added attempts to block opencode, etc.

mapontosevenths•53m ago

Opencode as well. Folks have been getting banned for abusing the OAuth login method to get around paying for API tokens or whatever. Anthropic seems to prefer people pay them.

serf•45m ago

its not that innocent.

a 200 dollar a month customer isn't trying to get around paying for tokens, theyre trying to use the tooling they prefer. opencode is better in a lot of ways.

tokens get counted and put against usage limits anyway, unless theyre trying to eat analytics that are CC exclusive they should allow paying customers to consume to the usage limits in however way they want to use the models.

fastball•26m ago

A $200/m max subscriber using OpenCode and not wanting to use API keys with pay-per-token pricing is very clearly trying to get around paying for tokens.

sambull•17m ago

Is there any limits to that users 200/month? Why should they not be able to use the limits to the extent from other tools?

If openclaw chews my 200/month up in 15 days... I don't get more requests for free

mapontosevenths•24m ago

> they should allow paying customers to consume to the usage limits in however way they want to use the models.

I think I agree, but it's their business to run however they like. They have competition if we don't like it.

MillionOClock•59m ago

I really hope someone from any of those companies (if possible all of them) would publish a very clear statement regarding the following question: If I build a commercial app that allows my users to connect using their OAuth token coming from their ChatGPT/Claude etc. account, do they allow me (and their users) to do this or not?

I totally understand that I should not reuse my own account to provide services to others, as direct API usage is the obvious choice here, but this is a different case.

I am currently developing something that would be the perfect fit for this OAuth based flow and I find it quite frustrating that in most cases I cannot find a clear answer to this question. I don't even know who I would be supposed to contact to get an answer or discuss this as an independent dev.

azuanrb•54m ago

Usually, it is already stated in their documentation (auth section). If a statement is vague, treat it as a no. It is not worth the risk when they can ban you at any time. For example, ChatGPT allows it, but Claude and Gemini do not.

https://developers.openai.com/codex/auth

MillionOClock•50m ago

Maybe I am missing something from the docs of your link, but I unfortunately don't think it actually states anything regarding allowing users to connect and use their Codex quota in third party apps.

adastra22•37m ago

From TFA: “OAuth authentication (used with Free, Pro, and Max plans) is intended exclusively for Claude Code and Claude.ai. Using OAuth tokens obtained through Claude Free, Pro, or Max accounts in any other product, tool, or service — including the Agent SDK — is not permitted and constitutes a violation of the Consumer Terms of Service.”

raincole•24m ago

They're not asking if Claude forbids it. They're asking if OpenAI (Codex, specifically) allows it.

MillionOClock•21m ago

The comment you are responding to is about ChatGPT/Codex, not Claude.

s-lambert•32m ago

https://x.com/thdxr/status/2013010664776683644

I can't find anything official from OpenAI, but they have worked with the OpenCode people to support using your ChatGPT subscription in OpenCode.

eleventyseven•54m ago

It is pretty obviously no. API keys billed by the token, yes, Oauth to the flat rate plans no.

MillionOClock•40m ago

If you look at this tweet [1] and in particular responses under it, it still seems to me like some parts of it need additional clarification. For instance, I have seen some people interpret the tweet as meaning using the OAuth token is actually ok for personal experimentation with the Agent SDK, which can be seen as a slight contradiction with what you quoted. A parent tweet also mentioned the docs clean up causing some confusion.

None of this is legal advice, I'm just trying to understand what exactly is allowed or not.

[1] https://x.com/trq212/status/2024212380142752025?s=10

adastra22•39m ago

Read the actual ToS. What you describe is NOT allowed.

artdigital•54m ago

That’s very clearly a no, I don’t understand why so many people think this is unclear.

You can’t use Claude OAuth tokens for anything. Any solution that exists worked because it pretended/spoofed to be Claude Code. Same for Gemini (Gemini CLI, Antigravity)

Codex is the only one that got official blessing to be used in OpenClaw and OpenCode, and even that was against the ToS before they changed their stance on it.

adastra22•37m ago

Is Codex ok with any other third party applications, or just those?

theLiminator•7m ago

Interested to know this too

ashikns•53m ago

> OAuth authentication (used with Free, Pro, and Max plans) is intended exclusively for Claude Code and Claude.ai.

I think this is pretty clear - No.

laksjhdlka•51m ago

Anthropic has published a very clear statement. It's "no".

paxys•45m ago

I don't see how they can get more clear about this, considering they have repeatedly answered it the exact same way.

Subscriptions are for first-party products (claude.com, mobile and desktop apps, Claude Code, editor extensions, Cowork).

Everything else must use API billing.

firloop•40m ago

The biggest reason why this is confusing is the Claude Agent SDK[0] will use subscription/oauth credentials if present. The terms update implies that there's some use cases where that's ok and other use cases (commercial?) where using their SDK on a user's device violates terms.

[0] https://platform.claude.com/docs/en/agent-sdk/overview

theturtletalks•37m ago

Had the same question, comment below quotes their docs saying Agent SDK using oAuth token is also not allowed.

theturtletalks•40m ago

What if you wrap the service using their Agent SDK?

MillionOClock•32m ago

You are talking about Anthropic and indeed compared to OpenAI or GitHub Copilot they have seemed to be the ones with what I would personally describe as a more restrictive approach.

On the other hand OpenAI and GitHub Copilot have, as far as I know, explicitly allowed their users to connect to at least some third party tools and use their quotas from there, notably to OpenCode.

What is unclear to me is whether they are considering also allowing commercial apps to do that. For instance if I publish a subscription based app and my users pay for the app itself rather than for LLM inference, would that be allowed?

SeanAnderson•37m ago

I think you're just trying to see ambiguity where it doesn't exist because the looser interpretation is beneficial to you. It totally makes sense why you'd want that outcome and I'm not faulting you for it. It's just that, from a POV of someone without stake in the game, the answer seems quite clear.

itissid•34m ago

One set of applications to build with subscription is to use the claude-go binary directly. Humanlayer/Codelayer projects on GitHub do this. Granted those are not ideal for building a subscription based business to use oathu tokens from Claude and OpenaAI. But you can build a business by building a development env and gating other features behind paywall or just offering enterprise service for certain features like vertical AI(redpanada) offerings knowledge workers, voice based interaction(there was a YC startup here the other day doing this I think), structured outputs and workflows. There is lots to build on.

saganus•58m ago

Thariq has clarified that there are no changes to how SDK and max suscriptions work:

https://x.com/i/status/2024212378402095389

---

On a different note, it's surprising that a company that size has to clarify something as important as ToS via X

sawjet•38m ago

What's wrong with using X?

minimaxir•28m ago

In the case you are asking in good faith, a) X requires logging in to view most of its content, which means that much of your audience will not see the news because b) much of your audience is not on X, either due to not having social media or have stopped using X due to its degradation to put it generally.

hedora•14m ago

c) it is controlled by a direct competitor and can bury / promote your customer communication at will.

minimaxir•6m ago

Elon has enough sense not to cross that particular bridge.

raincole•11m ago

I'm not signed in but I can view the above linked tweet just fine.

Plus it's not a real clarification in anyway. It's just PR. Even if it's posted on Mastodon or Github or anywhere, I highly doubt you can use it to defend yourself if you get banned from violating their ToS.

saganus•17m ago

Not bad per se but how much legal weight does it actually carry?

I presume zero.. but nonetheless seems like people will take it as valid anyway.

That can be dangerous I think.

adastra22•31m ago

FYI a Twitter post that contradicts the ToS is NOT a clarification.

tick_tock_tick•23m ago

> On a different note, it's surprising that a company that size has to clarify something as important as ToS via X

Countries clarify nation policy on X. Seriously it feels like half of the EU parliament live on twitter.

mkw5053•58m ago

And I just bought my mac mini this morning... Sorry everyone

eleventyseven•51m ago

You know that if you are just using a cloud service and not running local models, you could have just bought a raspberry pi.

mkw5053•46m ago

Yeah. I know it’s dumb but it’s also a very expensive machine to run BlueBubbles, because iMessage requires a real Mac signed into an Apple ID, and I want a persistent macOS automation host with native Messages, AppleScript, and direct access to my local dev environment, not just a headless Linux box calling APIs.

renewiltord•46m ago

Harder to get at the Apple ecosystem. I have an old Macbook that just serves my reminders over the internet.

beoberha•31m ago

who knows when Apple decides to enter the game, but they will absolutely crush the personal agent market when they do.

slopinthebag•53m ago

how can they even enforce this? can't you just spoof all your network requests to appear like it's coming from claude code?

in any case Codex is a better SOTA anyways and they let you do this. and if you aren't interested in the best models, Mistral lets you use both Vibe and their API through your vibe subscription api key which is incredible.

baconner•36m ago

They can't catch everything but they can make your product you're building on top of it non viable when it gets popular enough to look for, like they did with opencode.

charcircuit•33m ago

You could tell by the prompt being used.

tbrownaw•27m ago

> how can they even enforce this?

I would think that different tools would probably have different templates for their prompts?

Uehreka•27m ago

> how can they even enforce this?

Many ways, and they’re under no obligation to play fair and tell you which way they’re using at any given time. They’ve said what the rules are, they’ve said they’ll ban you if they catch you.

So let’s say they enforce it by adding an extra nonstandard challenge-response handshake at the beginning of the exchange, which generates a token which they’ll expect on all requests going forward. You decompile the minified JS code, figure out the protocol, try it from your own code but accidentally mess up a small detail (you didn’t realize the nonce has a special suffix). Detected. Banned.

You’ll need a new credit card to open a new account and try again. Better get the protocol right on the first try this time, because debugging is going to get expensive.

Let’s say you get frustrated and post on Twitter about what you know so far. If you share info, they’ll probably see it eventually and change their method. They’ll probably change it once a month anyway and see who they catch that way (and presumably add a minimum Claude Code version needed to reach their servers).

They’ve got hundreds of super smart coders and one of the most powerful AI models, they can do this all day.

slopinthebag•24m ago

the internet has hundreds of thousands of super smart coders with the most powerful ai models as well, I think it's a bit harder than you're assuming.

you just need to inspect the network traffic with Claude code and mimic that

raincole•5m ago

If your service's traffic is literally indistinguishable from Claude Code, then all it can do is what Claude Code does. Then why are the users going to choose your service instead of Claude Code?

paxys•25m ago

Pretty easy to enforce it - rather than make raw queries to the LLM Claude Code can proxy through Anthropic's servers. The server can then enforce query patterns, system prompts and other stuff that outside apps cannot override.

cjpartridge•20m ago

And once all the Claude subscribers move over to Codex subscriptions, I'd bet a large sum that OpenAI will make their own ToS update preventing automated/scripted usage.

tiffanyh•50m ago

In enterprise software, this is an embedded/OEM use case.

And historically, embedded/OEM use cases always have different pricing models for a variety of reasons why.

How is this any different than this long established practice?

ziml77•42m ago

It's not, but do you really think the people having Claude build wrappers around Claude were ever aware of how services like this are typically offered.

j45•49m ago

That's too bad, in a way it was a bit of an unofficial app store for Anthropic - I am sure they've probably looked at that and hopefully this means there's something on it's way.

drivebyhooting•48m ago

How does this impact open router?

Can’t this restriction for the time being be bypassed via -p command line flag?

minimaxir•21m ago

OpenRouter uses the API and does not use any subscription auth.

paxys•39m ago

I don't think it's a secret that AI companies are losing a ton of money on subscription plans. Hence the stricter rate limits, new $200+ plans, push towards advertising etc. The real money is in per-token billing via the API (and large companies having enough AI FOMO that they blindly pay the enormous invoices every month).

Someone1234•32m ago

I agree; unfortunately when I brought up that they're losing before I get jumped on demanding me to "prove it" and I guess pointing at their balance sheets isn't good enough.

sambull•19m ago

The secret is there is no path on making that back.

JimmaDaRustla•14m ago

My crude metaphor to explain to my family is gasoline has just been invented and we're all being lent Bentley's to get us addicted to driving everywhere. Eventually it we won't be given free Bentley's, and someone is going to be holding the bag when the infinite money machine finally has a hiccup.

eru•5m ago

Why? Computers and anything computer related have historically been dropping in prices like crazy year after year (with only very occasional hiccups). What makes you think this will stop now?

ddxv•36m ago

The pressure is to boost revenue by forcing more people to use the API to generate huge numbers of tokens they can charge more for. LLMs are becoming common commodities as open weight models keep catching up. There are similarities with pirating in the 90s when users realize they can ctrl+c ctrl+v to copy a file/model and you don't need to buy a cd/use their paid API.

chii•33m ago

And that is how it should be - the knowledge that the LLM trained on should be free, and cannot (and should never be) gatekept behind money.

It's merely the hardware that should be charged for - which ought to drop in price if/when the demand for it rises. However, this is a bottleneck at the moment, and hard to see how it gets resolved amidst the current US environment on sanctioning anyone who would try.

nucleative•14m ago

Is there no value in how the training was done such that it's accessible via inference in a particularly useful way?

adastra22•35m ago

What is the point of developing against the Agent SDK after this change.

solresol•32m ago

I got banned for violating terms of use apparently, but I'm mystified as to what I rule I broke, and appealing just vanishes into the ether.

theptip•31m ago

I think this is shortsighted.

The markets value recurring subscription revenue at something like 10x “one-off” revenue, Anthropic is leaving a lot of enterprise value on the table with this approach.

In practice this approach forces AI apps to pay Anthropic for tokens, and then bill their customers a subscription. Customers could bring their own API key but it’s sketchy to put that into every app you want to try, and consumers aren’t going to use developer tools. And many categories of free app are simply excluded, which could in aggregate drive a lot more demand for subscriptions.

If Anthropic is worried about quota, seems they could set lower caps for third-party subscription usage? Still better than forcing API keys.

(Maybe this is purely about displacing other IDE products, rather than a broader market play.)

bluegatty•14m ago

There's no decision to be made here, it's just way too expensive to have 3rd parties soak up the excess tokens, that's not the product being sold.

Especially as they are subsidized.

aydyn•28m ago

Sonnet literally just recommended using a subscription token for openclaw. Even anthropic's own AI doesn't understand its own TOS.

minimaxir•23m ago

Sonnet was not trained with this information and extremely-recent-information-without-access-to-a-Web-Search-tool is the core case of hallucination.

vcryan•26m ago

You can use Claude CLI as a relay - yes, it needs to be there -but its not that different than use the API

jes5199•26m ago

there’s a million small scale AI apps that just aren’t worth building because there’s no way to do the billing that makes sense. If anthropic wanted to own that market, they could introduce a bring-your-own-Claude metaphor, where you login with Claude and token costs get billed to your personal account (after some reasonable monthly freebies from your subscription).

But the big guys don’t seem interested in this, maybe some lesser known model will carve out this space

Rapzid•25m ago

Their moat is evaporating before our eyes. Anthropic is Microsoft's side piece, but Microsoft is married with kids to OpenAI.

And OpenAI just told Microsoft why they shouldn't be seeing Anthropic anymore; Gpt-5.3-codex.

RIP Anthropic.

archeantus•25m ago

Not according to this guy who works on Claude Code: https://x.com/trq212/status/2024212378402095389?s=20

What a PR nightmare, on top of an already bad week. I’ve seen 20+ people on X complaining about this and the related confusion.

azuanrb•22m ago

No, it is prohibited. They're just updating the docs to be more clear about their position, which haven't changed. Their docs was unclear about it.

JimmaDaRustla•11m ago

Incorrect, the third-party usage was already blocked (banned) but it wasn't officially communicated or documented. This post is simply identifying that official communication rather than the inference of actual functionality.

mccoyb•22m ago

OpenAI has endorsed OAuth from 3rd party harnesses, and their limits are way higher. Use better tools (OpenCode, pi) with an arguably better model (xhigh reasoning) for longer …

wyre•12m ago

I am looking forward to switching to OpenAI once my claude max account is banned for using pi....

exabrial•21m ago

The number one thing we need is cheap abundant decentralized clean energy, and these things are laughable.

Unfortunately neither political party can get all of the above.

minimaxir•14m ago

Are you implying that no one would use LLM SaaSes and everyone would self-host if energy costs were negligible?

That is...not how it works. People self-hosting don't look at their electricity bill.

hedora•7m ago

I was stuck on the part where they said neither party could provide cheap abundant decentralized clean energy. Biden / Obama did a great job of providing those things, to the point where dirty coal and natural gas are both more expensive than solar or wind.

So, which two parties could they be referring to? The Republicans and the Freedom Caucus?

scwoodal•20m ago

Why does it matter to Anthropic if my $200 plan usage is coming from Claude Code or a third party?

Doesn’t both count towards my usage limits the same?

minimaxir•17m ago

Any user who is using a third-party client is likely self-selected into being a power user who is less profitable.

operatingthetan•17m ago

Probably because the $20 plan is essentially a paid demo for the higher plans.

digdugdirk•15m ago

They don't get as much visibility into your data, just the actual call to/from the api. There's so much more value to them in that, since you're basically running the reinforcement learning training for them.

bluegatty•15m ago

If you buy a 'Season's Pass' for Disneyland, you cant 'sublet' it to another kid to use on the days you don't; It's not really buying a 'daily access rate'.

Anthropic subs are not 'bulk tokens'.

It's not an unreasonable policy and it's entirely inevitable that they have to restrict.

scwoodal•12m ago

I’m not subletting my sub to anyone. I’m the only one using the third party harness.

I’m using their own SDK in my own CLI tool.

sandeepkd•19m ago

Not really sure if its even feasible to enforce it unless the idea is to discourage the big players from doing it.

hedora•18m ago

Oh crap. I just logged into HN to ask if anyone knew of a working alternative to the Claude Code client. It's lost Claude's work multiple times in the last few days, and I'm ready to switch to a different provider. (4.6 is mildly better than 4.5, but the TUI is a deal breaker.)

So, I guess it's time to look into OpenAI Codex. Any other viable options? I have a 128GB iGPU, so maybe a local model would work for some tasks?

simpleusername•15m ago

QWEN models are quite nice for local use. Gemini 3 Pro is much better than Codex IMO.

vicchenai•17m ago

The economic tension here is pretty clear: flat-rate subscriptions are loss leaders designed to hook developers into the ecosystem. Once third parties can piggyback on that flat rate, you get arbitrage - someone builds a wrapper that burns through $200/month worth of inference for $20/month of subscription cost, and Anthropic eats the difference.

What is interesting is that OpenAI and GitHub seem to be taking the opposite approach with Copilot/OpenCode, essentially treating third-party tool access as a feature that increases subscription stickiness. Different bets on whether the LTV of a retained subscriber outweighs the marginal inference cost.

Would not be surprised if this converges eventually. Either Anthropic opens up once their margins improve, or OpenAI tightens once they realize the arbitrage is too expensive at scale.

sambull•14m ago

these subscriptions have limits.. how could someone use $200 worth on $20/month.. is that not the issue with the limits they set on a $20 plan, and couldn't a claude code user use that same $200 worth on $20/month? (and how do i do this?)

TechSquidTV•13m ago

My alt Google accounts were all banned from Gemini access. Luckily Google left my main account alone. They are all cracking down.

Open-source React dashboard for OpenClaw – visual UI for every CLI command

Germany seeking more F-35 jets as European fighter program falters

A short-duration wearable pulse-ox patch prototype

Show HN: A Lisp where each function call runs a Docker container

Monitoring Data-Dependent Temporal Patterns

Brendan Carr defends FCC role in dropped Colbert interview: 'No censorship'

The Far-Fetched Mission to Reclaim Islands That Host a Key U.S. Military Base

Prompt Repetition Improves Non-Reasoning LLMs [pdf]

Reddit bans user site-wide unless they pay for Reddit ads

C++26: Std:Is_within_lifetime

Beyond Body Count: How Many Past Partners Are Too Many?

Ukranian controls Home Assistant over LoRa radio when their power grid goes down

Fluxer: Free and open source instant messaging and VoIP platform

The Biophysical World Inside a Jam-Packed Cell

TimesFM (Time Series Foundation Model)

Electrobun v1: Build fast, tiny, and cross-platform desktop apps with TypeScript

The Excruciating Slow Rise of DNSSEC

India Seizes Sanctioned Shadow Fleet Tankers Amid Trade Thaw with U.S.

Show HN: I just shipped the canonical neuro-symbolic control demo

Blue Owl permanently halts redemptions at retail investor private credit fund

ClawJetty: Plug-In Personal OpenClaw Box

Stoat: A Good Alternative to Discord?

MNX: AI perps, futures, and prediction markets

Mooncake Joins PyTorch Ecosystem

Sound on the web: history, common use-cases, and best practices (2025)

I hacked ChatGPT and Google's AI – and it only took 20 minutes

We just hit 1k users

Will Humans Still Review Code? The critical question companies must answer now

Yet another OpenClaw host, 2 minutes setup with Kimi K2.5 inside

10k spinner phrases for Claude Code generated from Unix fortune