Glossary
The core Nolixan terms in one place.
Provider — an integrated third-party app (e.g. github, slack), identified by its
provider_config_key. See Actions & tools.
Action — a single operation on a provider, named provider__action (e.g. slack__send-message).
Classified read, write, or destructive.
Connection — stored, encrypted credentials for one account on one provider, identified by a
connection_id. See Connections.
Environment — the multi-tenant isolation boundary; connections, policies, and audit events all belong to one. See Environments.
API-Key — a secret (sk_…) that authenticates and resolves an environment; may carry grants
restricting it to specific providers/actions. See Authentication.
Policy — an allow / deny / require-approval rule evaluated on every action and proxy call. See Policies.
Approval — a pending action held by a require_approval policy until a different person decides it;
governed by separation of duties. See Approvals.
Audit event — an immutable, hash-chained record of a governed call. See Audit log.
Proxy — a governed passthrough to a provider's own API for operations not in the catalog. See Proxy.
MCP — the Model Context Protocol server that exposes actions as tools over JSON-RPC. See MCP server.
Tool-set — a named subset of actions you can scope an API key or MCP session to.