- Policy Clarification: Anthropic says Free, Pro, and Max OAuth tokens cannot be used in third-party tools or the Agent SDK.
- Immediate Impact: Developers report OAuth failures and account disruptions after enforcement began blocking third-party Max access in January 2026.
- What Changes: Teams integrating Claude into products now need API key authentication and must accept usage-based billing instead of subscription passthrough.
Developers using third-party AI tools tied to Claude subscription credentials face immediate disruption in the week of February 19, 2026. Anthropic says OAuth tokens from Free, Pro, and Max plans are not allowed in non-official products or in the Agent SDK.
According to developer reports and Anthropic documentation updates, teams that depended on subscription-based authentication for external tools and automated workflows have already seen access break.
“When Anthropic released Sonnet 4.6 with its impressive 1 million token context window, I was genuinely excited. Then I switched my agent over to the new model and everything broke. Authentication errors, OAuth tokens rejected, my entire workflow with third-party tools like OpenClaw and Open Code ground to a halt.”
Dave Swift, Developer (via Dave Swift)
Enforcement began blocking Max OAuth access in third-party clients on January 9, 2026. A documentation update on February 19 then clarified that using OAuth tokens from consumer plans in third-party tools violates Anthropic’s terms. Developers who had relied on those credentials for external tool access reported interrupted workflows and no advance notification.
What Anthropic Changed
Anthropic drew a clear boundary between consumer OAuth and developer API keys. Claude Code can authenticate with OAuth tokens or API keys, yet OAuth from Free, Pro, and Max plans is intended exclusively for Claude Code and Claude.ai.
According to Anthropic’s official documentation, using OAuth tokens obtained through Claude Free, Pro, or Max accounts in any other product, tool, or service is not permitted. That restriction also applies to the Agent SDK under the Consumer Terms of Service.
“Using OAuth tokens obtained through Claude Free, Pro, or Max accounts in any other product, tool, or service, including the Agent SDK, is not permitted and constitutes a violation of the Consumer Terms of Service.”
Anthropic, Official Documentation (via Claude Code Docs)
Anthropic also does not permit third-party developers to offer Claude.ai login or proxy requests through Free, Pro, or Max credentials for end users. In practice, that line separates consumer subscription usage from commercial or redistributed integrations.
Why Developers Are Frustrated
Developers say the change cuts off a widely used cost-control pattern. Many teams had used Claude Max subscriptions, priced at $100 to $200 per month, with third-party tooling to avoid per-usage API costs. Tools such as OpenClaw and OpenCode also let users rely on existing subscriptions instead of usage-based billing.
Use of subscriptions in third-party apps had existed in a gray area, but recent documentation updates clarified that such use is no longer permitted. Swift described a “disconnect between policy and practice.”
Anthropic later described the documentation changes as a “docs clean up” that caused confusion and said nothing was changing about Agent SDK usage with Max subscriptions. At the same time, developers continued reporting bans and OAuth failures. One user said they were banned after building a Claude Code usage-tracker Mac app, illustrating how enforcement can affect non-malicious projects.
What Developers Must Do Now
Anthropic’s own guidance points developers toward API keys for product integrations. Teams building tools or services on top of Claude should use API key authentication through Claude Console.
Thariq Shihipar of Anthropic’s Claude Code team advised businesses to use API keys rather than subscription OAuth tokens for Agent SDK work.
Moving to API keys means provisioning developer accounts and accepting usage-based billing. Anthropic reserves enforcement rights and can act without prior notice. Plan limits for Pro and Max are framed around ordinary individual use of Claude Code and the Agent SDK, not redistribution through third-party tools.
In January 2026, WinBuzzer reported Anthropic blocking unauthorized third-party tools and related access attempts. That timeline suggests the current enforcement is part of an ongoing platform-control strategy rather than a one-off policy event. Developers who do not migrate to API key authentication risk further workflow disruption and possible account action.


