Skip to main content
Product

API Gateway

Your company runs on dozens of software services: Salesforce, Stripe, internal tools, and more. Each one has an API. Plexara connects to those APIs and lets your AI assistant use them directly, through the same secure, logged connection as your databases, with no custom integration to build for each one.

Connecting your APIs

Connect an API once, and the assistant can use it

Point Plexara at an API and it reads the documentation that API publishes to learn what it can do. From then on your AI assistant can call it, to look up a customer, create an invoice, or pull a report, right alongside everything else it does in Plexara.

Connecting more APIs does not slow anything down. However many you add, and however many operations each one has, the assistant works the same way: it sees what is available, looks up the details of the one operation it needs, and makes the call. Ten APIs with a thousand operations between them stay as simple to use as one.

Salesforce, Stripe, GitHub

Connect the services your team already uses

Your internal services

Any REST or HTTP API you run in-house

No integration to build

Plexara reads the documentation each API publishes

One secure connection

Sign-in handled, access limited by role, every call logged

Finding the right call

The assistant finds the right operation on its own

A single API can have hundreds of operations. Rather than someone picking and setting up each one in advance, the assistant searches the API for what you are trying to do and finds the operation that fits.

Search by what you mean

Ask for the operation that creates an invoice and the assistant finds it, even when the API names it something you would not guess. It matches on meaning, not exact words.

Describe an API once

The documentation for an API is stored once and shared, so a test account and a live account can use the same description. When a vendor changes their API, you update it in one place instead of everywhere it is used.

Big APIs stay manageable

Large services like Google Workspace group their operations into sections such as Drive, Calendar, and Gmail. The assistant looks at the sections first and opens only the one it needs, so a huge API never overwhelms it.

Save what an API returns

A response from an API can be saved into Plexara as a report or file you can share and come back to, instead of disappearing when the chat ends.

Signing in

It signs in to each API for you

Every API checks who is calling in its own way. Plexara stores the login for each one and signs in on your behalf, so the assistant never sees the credential. It supports the methods APIs actually use:

OAuth sign-in

The sign-in used by services like Google and Salesforce. Someone signs in once, and Plexara keeps the connection working after that.

Stays signed in

Logins that expire are renewed before they run out, so a connection keeps working without anyone signing in again.

API keys

A single secret key or token. The simplest method, and the one many services use.

Username and password

For older or internal systems that still sign in with a username and password.

Client certificates

Certificate-based sign-in for internal and high-security systems that require it.

Extra requirements

Some APIs need a second credential or a private security certificate on top of the login. Plexara handles those as well.

Automation and scripts

Reach the same APIs from your automation tools

The same connected APIs are open to software that is not an AI assistant: an automation tool like Apache NiFi or n8n, a scheduled job, or a simple script. Each one calls Plexara instead of the API directly, and gets the same sign-in handling, role limits, and logging.

Because Plexara holds the credentials, your automation never has to store them, and every call is recorded in one place.

Call a connected API from a script

curl -X POST \
  https://api.plexara.io/api/v1/gateway/vendor/invoke \
  -H "X-API-Key: $PLEXARA_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "method": "GET",
    "path": "/v1/things",
    "query_params": { "limit": 50 }
  }'

Plexara signs the request with the login it stores for that API. The script never sees the credential, and the call is checked against the caller role and added to the log.

Security and control

Every call follows your rules

Reaching a lot of APIs is only useful if every call is safe. Each request goes through the same checks as the rest of Plexara.

Access by role

People and agents reach only the APIs their role allows, down to individual operations, so a role can read from an API without being able to change anything in it.

Everything is logged

Every API call is recorded with who made it and when, in the same log as your queries and catalog edits.

Steady under load

Large responses are saved to storage instead of held in memory, and a slow API returns a clear signal instead of holding everything up.

Explore

Integrations

How Plexara connects your databases, data catalog, and file storage through the same secure connection.