## Front integration Front is a customer operations platform that combines email, SMS, chat, and social channels in a shared inbox. The integration connects your Front workspace to Frontegg Agen for Work, enabling AI agents to read and manage conversations, contacts, messages, and other workspace resources on your behalf. Prerequisites - A Front account with admin access - Access to the Front developer portal at [app.frontapp.com/settings/developers](https://app.frontapp.com/settings/developers) ### Connect Front #### Step 1: Create an app in the Front developer portal Sign in to [Front](https://app.frontapp.com) and go to **Settings** → **Integrations** → **Developers**. The Developers page lists your existing apps. Click **Create app**. ![Front Developers page with Create app button highlighted](/assets/front-1.1e08bf77be840f4c5d1104be2928c07325d33e6ac9d35d247007436a87759f64.1ce25488.png) Front creates an untitled app and opens its configuration page. Go to the **Settings** tab, enter a name (for example, `Frontegg Integration`), and click **Save**. #### Step 2: Enable OAuth and configure settings Open the **Features** tab of your new app and click **Add feature**. In the dialog that appears, scroll to the **API Access** section and click **Add feature** on the **OAuth** card. You will be taken to the OAuth configuration page. Fill in the following settings: **Redirect URLs** Click **Add Redirect URL** and enter your Frontegg Redirect URL: - `https://YOUR_MCP_GATEWAY_URL/integration-callback` See [Get your Redirect URL](/agen-for-work/connectors/redirect-url) for instructions on finding your MCP Gateway URL. **Feature access** Select both checkboxes: - **Access resources** — allows the app to read and write workspace resources - **Auto-provisioning** — enables provisioning actions **Namespace access** Select the following namespaces: - **Shared resources** — grants access to shared inboxes, conversations, and channels - **Private resources** — grants access to private conversations and resources Scopes are portal-only Front configures OAuth scopes exclusively in the developer portal. Do not add a `scope` parameter to the authorization URL — doing so causes an `invalid_scope` error. Click **Save**. Front generates the **Client ID** and **Client secret** for your app. ![Front OAuth page showing Client ID, redirect URL, and selected scopes](/assets/front-3.fb86012cb139f1363b6270ec526034792c88bc47dc4e852715a09a79e4df9902.1ce25488.png) #### Step 3: Copy your credentials On the OAuth page, copy both values from the **App credentials** section: - **Client ID** - **Client secret** — click **Reveal** to display it, then copy it ### Configure the Frontegg portal Once you have obtained your **Client ID** and **Client secret** from the steps above, enter them in the integration configuration page of the Frontegg portal: 1. Open the **Frontegg portal** and navigate to your environment → **Integrations** → **Front**. 2. Enter the **Client ID** and **Client secret** in the corresponding fields. 3. Click **Save**. Keep your credentials secure Never share or commit your Client secret to version control. ### Additional resources - [Front developer documentation](https://dev.frontapp.com/docs/welcome) - [Front OAuth guide](https://dev.frontapp.com/docs/oauth) - [Front API reference](https://dev.frontapp.com/reference/introduction) - [How to get your Redirect URL](/agen-for-work/connectors/redirect-url)