CopilotKit v2 runtime (@copilotkit/runtime) runs as a Hono HTTP server. It exposes these endpoints under the configured basePath:
| Endpoint | Method | Purpose |
|---|---|---|
/info |
GET | Runtime discovery -- returns version, agent list, capabilities |
/agent/:agentId/run |
POST | Start an agent run, returns SSE event stream |
/agent/:agentId/connect |
POST | Connect to an existing agent run (Intelligence mode) |
/agent/:agentId/stop |
POST | Stop a running agent |
/transcribe |
POST | Audio transcription |
/threads |
GET/POST/PATCH/DELETE | Thread management (Intelligence mode only) |
- Default mode. Agent runs are ephemeral.
- Each
/agent/:id/runrequest creates a new run and streams AG-UI events as SSE. - Uses
InMemoryAgentRunnerby default. - No thread persistence -- state lives only for the duration of the SSE connection.
- Requires
CopilotKitIntelligenceconfiguration withapiUrl,wsUrl,apiKey,tenantId. - Agent runs are durable -- threads are persisted on the Intelligence platform.
- Uses
IntelligenceAgentRunnerwhich coordinates via WebSocket. - Supports thread listing, archiving, deletion, and real-time updates.
- Requires
identifyUsercallback to resolve authenticated users.
-
Verify the runtime is running: Hit the
/infoendpoint directly:curl http://localhost:3001/api/copilotkit/info
Expected response: JSON with
version,agents,modefields. -
Check basePath alignment: The
basePathincreateCopilotEndpoint()must match theruntimeUrlinCopilotKitProvider:// Server createCopilotEndpoint({ runtime, basePath: "/api/copilotkit" }); // Client <CopilotKitProvider runtimeUrl="/api/copilotkit">
-
Check the Hono app mounting: If using a framework adapter (Next.js, Express), ensure the Hono app is mounted at the right path. The framework's route path combined with
basePathmust form the full URL. -
Proxy/reverse proxy issues: If running behind nginx, Vercel, or similar, ensure the proxy passes the full path and does not strip the prefix.
- The runtime server is not running on the expected host:port.
- Check
process.env.PORTor the server's listen configuration. - If using Docker, ensure the port is exposed and the container is running.
- The hostname in
runtimeUrlcannot be resolved. - Check for typos in the URL.
- If using service discovery (Kubernetes, Docker Compose), verify the service name is correct.
- Server is reachable but not responding in time.
- Check server load and resource limits.
- Increase timeout if the agent's first response takes a while (large model, cold start).
When no cors option is provided to createCopilotEndpoint, the runtime defaults to:
origin: "*"(all origins allowed)credentials: false- All standard HTTP methods allowed
- All headers allowed
When using HTTP-only cookies for authentication, you must configure CORS explicitly:
createCopilotEndpoint({
runtime,
basePath: "/api/copilotkit",
cors: {
origin: "https://myapp.com", // Must be explicit, not "*"
credentials: true,
},
});On the client side, enable credentials:
<CopilotKitProvider
runtimeUrl="https://api.myapp.com/api/copilotkit"
credentials="include"
/>| Browser Error | Cause | Fix |
|---|---|---|
| "No 'Access-Control-Allow-Origin' header" | Runtime not sending CORS headers | Verify createCopilotEndpoint is handling the request (not a 404 from another handler) |
| "Credential is not supported if origin is '*'" | credentials: true with wildcard origin |
Set an explicit origin in the CORS config |
| "Method PUT is not allowed" | Preflight failure | Ensure the runtime's CORS allows the method (default config allows all) |
| CORS error only in production | Different origins in dev vs prod | Update the origin config for the production domain |
- Open browser DevTools Network tab
- Look for a failed OPTIONS (preflight) request to the runtime URL
- Check the response headers --
Access-Control-Allow-Origin,Access-Control-Allow-Credentials,Access-Control-Allow-Headers - If no OPTIONS request appears, the browser may be making a "simple request" that still fails on the response headers
The /agent/:agentId/run endpoint returns an SSE response:
- Content-Type:
text/event-stream - Cache-Control:
no-cache - Connection:
keep-alive
Events are encoded using @ag-ui/encoder (the EventEncoder class). Each event is a data: line in SSE format.
- Agent not found: The agent ID in the URL does not match any registered agent. Check the
/infoendpoint. - Middleware blocking: A
beforeRequestMiddlewaremight be throwing or returning an error response before the agent runs. - Agent constructor failure: The agent's initialization might throw (e.g., missing API key). Check server-side logs.
- Agent waiting for tool result: If the agent calls a frontend tool and the frontend does not respond, the stream will appear hung. Check that frontend tools are registered and responding.
- Reasoning event stall: Anthropic models with reasoning/thinking tokens can cause stalls if the event handler does not properly process
REASONING_*events (issue #3323). - Backpressure: If the client reads slowly, the
TransformStreamwriter may block. This is rare with SSE but possible with very high event rates.
- Client disconnect: If the browser tab is closed or the network drops, the
request.signalaborts and the subscription is cleaned up. - Agent error: An uncaught exception in the agent terminates the observable. Check for
RunErrorEventbefore the stream closes. - Server timeout: Some hosting platforms (Vercel, Railway) have response timeouts. Long-running agent interactions may hit these limits.
-
Open DevTools > Network tab
-
Find the POST request to
/agent/:id/run -
Click the "EventStream" tab (Chrome) or check the Response tab for raw SSE data
-
Each event should be formatted as:
data: {"type":"RunStarted","runId":"..."} data: {"type":"TextMessageStart","messageId":"..."} data: {"type":"TextMessageChunk","delta":"Hello"} -
If events stop flowing, the issue is server-side (agent stalled or errored)
The /info endpoint is the first request the client makes. If it fails, no agent interaction is possible.
{
"version": "1.52.0",
"agents": {
"myAgent": {
"name": "myAgent",
"description": "My agent description",
"className": "BuiltInAgent"
}
},
"audioFileTranscriptionEnabled": false,
"mode": "sse",
"a2uiEnabled": false
}For Intelligence mode, the response also includes:
{
"intelligence": {
"wsUrl": "wss://api.copilotkit.ai/client"
}
}- 500 error: The
agentspromise rejected (lazy agent loading failed). Check the agents factory function. - 404 error: Wrong basePath or the runtime is not mounted at the expected URL.
- CORS error: The preflight for
/infofailed. See CORS section above.
<CopilotKitProvider
runtimeUrl="/api/copilotkit"
headers={{ Authorization: `Bearer ${token}` }}
/>Headers are sent with every request to the runtime, including /info, /agent/:id/run, etc.
const runtime = new CopilotRuntime({
agents: {
/* ... */
},
beforeRequestMiddleware: async ({ request }) => {
const auth = request.headers.get("Authorization");
// Validate auth, modify request, or throw to reject
return request;
},
});Headers from the client are available in the runtime middleware but are NOT automatically forwarded to remote agents (A2A). This is a known limitation (issue #3170 and #3425). To forward headers, use middleware to inject them into the agent configuration.