Nolixan

Glossary

The core Nolixan terms in one place.

Provider — an integrated third-party app (e.g. github, slack), identified by its provider_config_key. See Actions & tools.

Action — a single operation on a provider, named provider__action (e.g. slack__send-message). Classified read, write, or destructive.

Connection — stored, encrypted credentials for one account on one provider, identified by a connection_id. See Connections.

Environment — the multi-tenant isolation boundary; connections, policies, and audit events all belong to one. See Environments.

API-Key — a secret (sk_…) that authenticates and resolves an environment; may carry grants restricting it to specific providers/actions. See Authentication.

Policy — an allow / deny / require-approval rule evaluated on every action and proxy call. See Policies.

Approval — a pending action held by a require_approval policy until a different person decides it; governed by separation of duties. See Approvals.

Audit event — an immutable, hash-chained record of a governed call. See Audit log.

Proxy — a governed passthrough to a provider's own API for operations not in the catalog. See Proxy.

MCP — the Model Context Protocol server that exposes actions as tools over JSON-RPC. See MCP server.

Tool-set — a named subset of actions you can scope an API key or MCP session to.