Api Gateway 1.0.7

API gateway for calling third-party APIs with managed auth. Use this skill when users want to interact with external services like Slack, HubSpot, Salesforce...

copies: implexa run clawhub/api-gateway-1-0-7

view source

installs

stars

karma

SkillRank score ↗

7.3/ 10

evaluated by implexa, claude-haiku-4-5 · 2026-05-26

api-gateway-1-0-7 proxies requests to 40+ third-party apis (slack, hubspot, salesforce, stripe, etc) with managed oauth. requires maton api key and handles connection lifecycle via separate control plane.

structure

9.0

trigger phrases

4.0

procedure

8.0

edge cases

7.0

documentation

8.0

strengths

view original SKILL.md from clawhubclick to expand

---
name: api-gateway
description: |
  API gateway for calling third-party APIs with managed auth. Use this skill when users want to interact with external services like Slack, HubSpot, Salesforce, Google Workspace, Stripe, and more.
compatibility: Requires network access and valid Maton API key
metadata:
  author: maton
  version: "1.0"
---

# API Gateway

Passthrough proxy for direct access to third-party APIs using managed auth connections. The API gateway lets you call native API endpoints directly.

## Quick Start

```bash
# Native Slack API call
curl -s -X POST "https://gateway.maton.ai/slack/api/chat.postMessage" -H "Content-Type: application/json" -H "Authorization: Bearer $MATON_API_KEY" -d '{"channel": "C0123456", "text": "Hello from gateway!"}'
```

> **IMPORTANT: If you receive a 500 Internal Server Error**, this does NOT mean the service is unsupported. The most common cause is an expired OAuth refresh token (connections older than 1 month). See the "Troubleshooting 500 Internal Server Error" section below to create a new connection and retry with the new connection ID.

## Base URL

```
https://gateway.maton.ai/{app}/{native-api-path}
```

Replace `{app}` with the service name and `{native-api-path}` with the actual API endpoint path.

## Authentication

All requests require the Maton API key in the Authorization header:

```
Authorization: Bearer $MATON_API_KEY
```

The API gateway automatically injects the appropriate OAuth token for the target service.

**Environment Variable:** You can set your API key as the `MATON_API_KEY` environment variable:

```bash
export MATON_API_KEY="YOUR_API_KEY"
```

## Getting Your API Key

1. Sign in or create an account at [maton.ai](https://maton.ai)
2. Go to [maton.ai/settings](https://maton.ai/settings)
3. Click the copy button on the right side of API Key section to copy it

## Connection Management

Connection management uses a separate base URL: `https://ctrl.maton.ai`

### List Connections

```bash
curl -s -X GET "https://ctrl.maton.ai/connections?app=slack&status=ACTIVE" -H "Authorization: Bearer $MATON_API_KEY"
```

**Query Parameters (optional):**
- `app` - Filter by service name (e.g., `slack`, `hubspot`, `salesforce`)
- `status` - Filter by connection status (`ACTIVE`, `PENDING`, `FAILED`)

**Response:**
```json
{
  "connections": [
    {
      "connection_id": "21fd90f9-5935-43cd-b6c8-bde9d915ca80",
      "status": "ACTIVE",
      "creation_time": "2025-12-08T07:20:53.488460Z",
      "last_updated_time": "2026-01-31T20:03:32.593153Z",
      "url": "https://connect.maton.ai/?session_token=5e9...",
      "app": "slack",
      "metadata": {}
    }
  ]
}
```

### Create Connection

```bash
curl -s -X POST "https://ctrl.maton.ai/connections" -H "Content-Type: application/json" -H "Authorization: Bearer $MATON_API_KEY" -d '{"app": "slack"}'
```

### Get Connection

```bash
curl -s -X GET "https://ctrl.maton.ai/connections/{connection_id}" -H "Authorization: Bearer $MATON_API_KEY"
```

**Response:**
```json
{
  "connection": {
    "connection_id": "21fd90f9-5935-43cd-b6c8-bde9d915ca80",
    "status": "ACTIVE",
    "creation_time": "2025-12-08T07:20:53.488460Z",
    "last_updated_time": "2026-01-31T20:03:32.593153Z",
    "url": "https://connect.maton.ai/?session_token=5e9...",
    "app": "slack",
    "metadata": {}
  }
}
```

Open the returned URL in a browser to complete OAuth.

### Delete Connection

```bash
curl -s -X DELETE "https://ctrl.maton.ai/connections/{connection_id}" -H "Authorization: Bearer $MATON_API_KEY"
```

### Specifying Connection

If you have multiple connections for the same app, you can specify which connection to use by adding the `Maton-Connection` header with the connection ID:

```bash
curl -s -X POST "https://gateway.maton.ai/slack/api/chat.postMessage" -H "Content-Type: application/json" -H "Authorization: Bearer $MATON_API_KEY" -H "Maton-Connection: 21fd90f9-5935-43cd-b6c8-bde9d915ca80" -d '{"channel": "C0123456", "text": "Hello!"}'
```

If omitted, the gateway uses the default (oldest) active connection for that app.

## Supported Services

| Service | App Name | Base URL Proxied |
|---------|----------|------------------|
| Airtable | `airtable` | `api.airtable.com` |
| Apollo | `apollo` | `api.apollo.io` |
| Asana | `asana` | `app.asana.com` |
| Calendly | `calendly` | `api.calendly.com` |
| Chargebee | `chargebee` | `{subdomain}.chargebee.com` |
| ClickUp | `clickup` | `api.clickup.com` |
| Fathom | `fathom` | `api.fathom.ai` |
| Google Ads | `google-ads` | `googleads.googleapis.com` |
| Google Analytics Admin | `google-analytics-admin` | `analyticsadmin.googleapis.com` |
| Google Analytics Data | `google-analytics-data` | `analyticsdata.googleapis.com` |
| Google Calendar | `google-calendar` | `www.googleapis.com` |
| Google Docs | `google-docs` | `docs.googleapis.com` |
| Google Drive | `google-drive` | `www.googleapis.com` |
| Google Forms | `google-forms` | `forms.googleapis.com` |
| Gmail | `google-mail` | `gmail.googleapis.com` |
| Google Meet | `google-meet` | `meet.googleapis.com` |
| Google Play | `google-play` | `androidpublisher.googleapis.com` |
| Google Search Console | `google-search-console` | `www.googleapis.com` |
| Google Sheets | `google-sheets` | `sheets.googleapis.com` |
| Google Slides | `google-slides` | `slides.googleapis.com` |
| HubSpot | `hubspot` | `api.hubapi.com` |
| Jira | `jira` | `api.atlassian.com` |
| JotForm | `jotform` | `api.jotform.com` |
| Klaviyo | `klaviyo` | `a.klaviyo.com` |
| Mailchimp | `mailchimp` | `{dc}.api.mailchimp.com` |
| Notion | `notion` | `api.notion.com` |
| Outlook | `outlook` | `graph.microsoft.com` |
| Pipedrive | `pipedrive` | `api.pipedrive.com` |
| QuickBooks | `quickbooks` | `quickbooks.api.intuit.com` |
| Salesforce | `salesforce` | `{instance}.salesforce.com` |
| Slack | `slack` | `slack.com` |
| Stripe | `stripe` | `api.stripe.com` |
| Trello | `trello` | `api.trello.com` |
| Typeform | `typeform` | `api.typeform.com` |
| WhatsApp Business | `whatsapp-business` | `graph.facebook.com` |
| WooCommerce | `woocommerce` | `{store-url}/wp-json/wc/v3` |
| Xero | `xero` | `api.xero.com` |
| YouTube | `youtube` | `www.googleapis.com` |

See [references/](references/) for detailed routing guides per provider:
- [Airtable](references/airtable.md) - Records, bases, tables
- [Apollo](references/apollo.md) - People search, enrichment, contacts
- [Asana](references/asana.md) - Tasks, projects, workspaces, webhooks
- [Calendly](references/calendly.md) - Event types, scheduled events, availability, webhooks
- [Chargebee](references/chargebee.md) - Subscriptions, customers, invoices
- [ClickUp](references/clickup.md) - Tasks, lists, folders, spaces, webhooks
- [Fathom](references/fathom.md) - Meeting recordings, transcripts, summaries, webhooks
- [Google Ads](references/google-ads.md) - Campaigns, ad groups, GAQL queries
- [Google Analytics Admin](references/google-analytics-admin.md) - Reports, dimensions, metrics
- [Google Analytics Data](references/google-analytics-data.md) - Reports, dimensions, metrics
- [Google Calendar](references/google-calendar.md) - Events, calendars, free/busy
- [Google Docs](references/google-docs.md) - Document creation, batch updates
- [Google Drive](references/google-drive.md) - Files, folders, permissions
- [Google Forms](references/google-forms.md) - Forms, questions, responses
- [Gmail](references/google-mail.md) - Messages, threads, labels
- [Google Meet](references/google-meet.md) - Spaces, conference records, participants
- [Google Play](references/google-play.md) - In-app products, subscriptions, reviews
- [Google Search Console](references/google-search-console.md) - Search analytics, sitemaps
- [Google Sheets](references/google-sheets.md) - Values, ranges, formatting
- [Google Slides](references/google-slides.md) - Presentations, slides, formatting
- [HubSpot](references/hubspot.md) - Contacts, companies, deals
- [Jira](references/jira.md) - Issues, projects, JQL queries
- [JotForm](references/jotform.md) - Forms, submissions, webhooks
- [Klaviyo](references/klaviyo.md) - Profiles, lists, campaigns, flows, events
- [Mailchimp](references/mailchimp.md) - Audiences, campaigns, templates, automations
- [Notion](references/notion.md) - Pages, databases, blocks
- [Outlook](references/outlook.md) - Mail, calendar, contacts
- [Pipedrive](references/pipedrive.md) - Deals, persons, organizations, activities
- [QuickBooks](references/quickbooks.md) - Customers, invoices, reports
- [Salesforce](references/salesforce.md) - SOQL, sObjects, CRUD
- [Slack](references/slack.md) - Messages, channels, users
- [Stripe](references/stripe.md) - Customers, subscriptions, payments
- [Trello](references/trello.md) - Boards, lists, cards, checklists
- [Typeform](references/typeform.md) - Forms, responses, insights
- [WhatsApp Business](references/whatsapp-business.md) - Messages, templates, media
- [WooCommerce](references/woocommerce.md) - Products, orders, customers, coupons
- [Xero](references/xero.md) - Contacts, invoices, reports
- [YouTube](references/youtube.md) - Videos, playlists, channels, subscriptions

## Examples

### Slack - Post Message (Native API)

```bash
# Native Slack API: POST https://slack.com/api/chat.postMessage
curl -s -X POST "https://gateway.maton.ai/slack/api/chat.postMessage" -H "Content-Type: application/json; charset=utf-8" -H "Authorization: Bearer $MATON_API_KEY" -d '{"channel": "C0123456", "text": "Hello!"}'
```

### HubSpot - Create Contact (Native API)

```bash
# Native HubSpot API: POST https://api.hubapi.com/crm/v3/objects/contacts
curl -s -X POST "https://gateway.maton.ai/hubspot/crm/v3/objects/contacts" -H "Content-Type: application/json" -H "Authorization: Bearer $MATON_API_KEY" -d '{"properties": {"email": "john@example.com", "firstname": "John", "lastname": "Doe"}}'
```

### Google Sheets - Get Spreadsheet Values (Native API)

```bash
# Native Sheets API: GET https://sheets.googleapis.com/v4/spreadsheets/{id}/values/{range}
curl -s -X GET "https://gateway.maton.ai/google-sheets/v4/spreadsheets/122BS1sFN2RKL8AOUQjkLdubzOwgqzPT64KfZ2rvYI4M/values/Sheet1!A1:B2" -H "Authorization: Bearer $MATON_API_KEY"
```

### Salesforce - SOQL Query (Native API)

```bash
# Native Salesforce API: GET https://{instance}.salesforce.com/services/data/v64.0/query?q=...
curl -s -X GET "https://gateway.maton.ai/salesforce/services/data/v64.0/query?q=SELECT+Id,Name+FROM+Contact+LIMIT+10" -H "Authorization: Bearer $MATON_API_KEY"
```

### Airtable - List Tables (Native API)

```bash
# Native Airtable API: GET https://api.airtable.com/v0/meta/bases/{id}/tables
curl -s -X GET "https://gateway.maton.ai/airtable/v0/meta/bases/appgqan2NzWGP5sBK/tables" -H "Authorization: Bearer $MATON_API_KEY"
```

### Notion - Query Database (Native API)

```bash
# Native Notion API: POST https://api.notion.com/v1/data_sources/{id}/query
curl -s -X POST "https://gateway.maton.ai/notion/v1/data_sources/23702dc5-9a3b-8001-9e1c-000b5af0a980/query" -H "Content-Type: application/json" -H "Authorization: Bearer $MATON_API_KEY" -H "Notion-Version: 2025-09-03" -d '{}'
```

### Stripe - List Customers (Native API)

```bash
# Native Stripe API: GET https://api.stripe.com/v1/customers
curl -s -X GET "https://gateway.maton.ai/stripe/v1/customers?limit=10" -H "Authorization: Bearer $MATON_API_KEY"
```

## Code Examples

### JavaScript (Node.js)

```javascript
const response = await fetch('https://gateway.maton.ai/slack/api/chat.postMessage', {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Authorization': `Bearer ${process.env.MATON_API_KEY}`
  },
  body: JSON.stringify({ channel: 'C0123456', text: 'Hello!' })
});
```

### Python

```python
import os
import requests

response = requests.post(
    'https://gateway.maton.ai/slack/api/chat.postMessage',
    headers={'Authorization': f'Bearer {os.environ["MATON_API_KEY"]}'},
    json={'channel': 'C0123456', 'text': 'Hello!'}
)
```

## Error Handling

| Status | Meaning |
|--------|---------|
| 400 | Missing connection for the requested app |
| 401 | Invalid or missing Maton API key |
| 429 | Rate limited (10 requests/second per account) |
| 500 | Internal Server Error (see troubleshooting below) |
| 4xx/5xx | Passthrough error from the target API |

Errors from the target API are passed through with their original status codes and response bodies.

### Troubleshooting 500 Internal Server Error

**IMPORTANT:** A 500 Internal Server Error does NOT mean the service is unsupported. If the app is listed in the Supported Services table above, the error is likely due to an expired OAuth refresh token.

**When you receive a 500 Internal Server Error, ALWAYS follow these steps before concluding there is an issue:**

Connections that have been active for more than 1 month may have expired OAuth refresh tokens. To resolve:

1. Create a new connection for the app:
   ```bash
   curl -s -X POST "https://ctrl.maton.ai/connections" -H "Content-Type: application/json" -H "Authorization: Bearer $MATON_API_KEY" -d '{"app": "APP_NAME"}'
   ```

2. Get the OAuth URL by calling the GET connection endpoint with the new connection ID from step 1:
   ```bash
   curl -s -X GET "https://ctrl.maton.ai/connections/NEW_CONNECTION_ID" -H "Authorization: Bearer $MATON_API_KEY"
   ```

3. Share the returned `url` with the user and ask them to complete the OAuth flow in their browser.

4. After the user completes OAuth, retry the original request using the new connection ID via the `Maton-Connection` header:
   ```bash
   curl -s -X GET "https://gateway.maton.ai/APP_NAME/..." -H "Authorization: Bearer $MATON_API_KEY" -H "Maton-Connection: NEW_CONNECTION_ID"
   ```

5. Once the new connection status is `ACTIVE` and working, ask the user if they want to delete the old connection:
   ```bash
   curl -s -X DELETE "https://ctrl.maton.ai/connections/OLD_CONNECTION_ID" -H "Authorization: Bearer $MATON_API_KEY"
   ```

## Rate Limits

- 10 requests per second per account
- Target API rate limits also apply

## Notes

- IMPORTANT: When using curl commands, use `curl -g` when URLs contain brackets (`fields[]`, `sort[]`, `records[]`) to disable glob parsing
- IMPORTANT: When piping curl output to `jq` or other commands, environment variables like `$MATON_API_KEY` may not expand correctly in some shell environments. You may get "Invalid API key" errors when piping.

## Tips

1. **Use native API docs**: Refer to each service's official API documentation for endpoint paths and parameters.

2. **Headers are forwarded**: Custom headers (except `Host` and `Authorization`) are forwarded to the target API.

3. **Query params work**: URL query parameters are passed through to the target API.

4. **All HTTP methods supported**: GET, POST, PUT, PATCH, DELETE are all supported.

5. **QuickBooks special case**: Use `:realmId` in the path and it will be replaced with the connected realm ID.

## Optional

- [Github](https://github.com/maton-ai/api-gateway-skill)
- [Documentation](https://www.maton.ai/docs/api-reference)
- [Community](https://discord.com/invite/dBfFAcefs2)

don't have the plugin yet? install it then click "run inline in claude" again.

restructured into implexa six-component format, added explicit decision logic for 500 errors and multi-connection scenarios, clarified oauth flow and connection lifecycle, integrated rate limits and edge cases into inputs and decision points, added outcome signal examples showing status changes and permission errors.

API Gateway 1.0.7

Item: Api Gateway 1.0.7
Rating: 7.3
Author: Implexa

intent

call native API endpoints on 40+ third-party services (Slack, HubSpot, Salesforce, Google Workspace, Stripe, etc.) without managing OAuth tokens yourself. the gateway handles auth injection and connection lifecycle. use this when you need to hit an external API but don't want to store or rotate credentials in your own infrastructure.

inputs

Maton API key (env var: MATON_API_KEY). grab it from maton.ai/settings.
connection ID (optional). if you have multiple OAuth connections for the same app, pass it via the Maton-Connection header. if omitted, the gateway uses the default (oldest) active connection.
target app name (required). one of the 40+ supported services listed below (e.g., slack, hubspot, salesforce).
native API path (required). the actual endpoint path from the target service's official docs (e.g., /api/chat.postMessage for Slack, /crm/v3/objects/contacts for HubSpot).
OAuth connection (required, but auto-managed). you must have at least one active OAuth connection for the target app. create one via the connection management API (see procedure step 2).
network connectivity. the gateway requires outbound HTTPS to gateway.maton.ai and ctrl.maton.ai.

procedure

set up your maton api key. sign in to maton.ai, go to maton.ai/settings, and copy your API key. store it as the MATON_API_KEY environment variable.
- input: maton account access.
- output: MATON_API_KEY env var available in your shell or runtime.
create or list oauth connections for your target app. call the connection management API to create a new connection or list existing ones.
- create a connection: POST to https://ctrl.maton.ai/connections with the app name (e.g., {"app": "slack"}).
- list connections: GET https://ctrl.maton.ai/connections?app=slack&status=ACTIVE to see your active connections.
- input: app name (e.g., slack, hubspot), maton API key.
- output: connection object with connection_id, status, and OAuth url.
- example:
```
curl -s -X POST "https://ctrl.maton.ai/connections" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer $MATON_API_KEY" \
  -d '{"app": "slack"}'
```
complete oauth in the browser (if connection status is PENDING). open the returned url from step 2 in a browser and authorize the app. the connection status will change to ACTIVE once complete.
- input: OAuth url from step 2.
- output: ACTIVE connection status.
construct the gateway url. use the format https://gateway.maton.ai/{app}/{native-api-path}. replace {app} with the service slug (e.g., slack, google-sheets) and {native-api-path} with the actual API endpoint from the target service's docs (e.g., api/chat.postMessage).
- input: app name, native API path.
- output: full gateway URL string.
- examples:
  - Slack: https://gateway.maton.ai/slack/api/chat.postMessage
  - HubSpot: https://gateway.maton.ai/hubspot/crm/v3/objects/contacts
  - Google Sheets: https://gateway.maton.ai/google-sheets/v4/spreadsheets/{id}/values/{range}
make the api request to the gateway. send your HTTP request (GET, POST, PUT, PATCH, DELETE) to the gateway URL with these required headers:
- Authorization: Bearer $MATON_API_KEY
- (optional) Maton-Connection: {connection_id} if you have multiple connections for the same app and want to use a specific one.
- (optional) any headers the target API expects (e.g., Content-Type, custom headers). the gateway forwards all headers except Host and Authorization.
- input: gateway URL, maton API key, request body (if POST/PUT/PATCH), query params (if applicable).
- output: response from the target API with original status code and body.
- example:
```
curl -s -X POST "https://gateway.maton.ai/slack/api/chat.postMessage" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer $MATON_API_KEY" \
  -d '{"channel": "C0123456", "text": "Hello!"}'
```
handle errors and retry if needed. check the response status code. if you get a 500 error on a supported service (listed in the supported services table), the cause is likely an expired OAuth refresh token. see the "decision points" section below for recovery steps. if you get a 4xx error from the target API, refer to that service's official docs.
- input: response status code, response body.
- output: success response or identified error for remediation.

decision points

if connection status is PENDING: the OAuth flow is not yet complete. share the url from the connection object with the user and ask them to authorize in their browser.
if you receive a 500 internal server error on a supported app: the connection's OAuth refresh token has likely expired (connections older than 1 month are at risk). do not assume the service is broken. follow these steps:
1. create a new connection via POST to https://ctrl.maton.ai/connections with the same app name.
2. get the connection details via GET to https://ctrl.maton.ai/connections/{new_connection_id} to retrieve the OAuth URL.
3. ask the user to complete the OAuth flow by opening the returned URL in their browser.
4. once the new connection status is ACTIVE, retry your original request using the Maton-Connection: {new_connection_id} header.
5. optionally delete the old connection via DELETE to https://ctrl.maton.ai/connections/{old_connection_id}.
if you get a 400 error with "missing connection for the requested app": no active OAuth connection exists for that app yet. create one via step 2 of the procedure.
if you get a 401 error: the MATON_API_KEY is invalid, missing, or expired. verify the key from maton.ai/settings and retry.
if you get a 429 rate limit error: you have exceeded 10 requests per second for your account. back off and retry with exponential jitter. also check if the target API has its own rate limits and respect those.
if you get a 4xx or 5xx error from the target API: the error is passed through from the target service. refer to that service's official API documentation to debug the request payload, required fields, or permissions.
if you have multiple active connections for the same app: use the Maton-Connection header to specify which connection to use. if you omit the header, the gateway defaults to the oldest active connection (not recommended for multi-connection setups; always specify explicitly).
if query params or request body have special characters (e.g., fields[], sort[], brackets in general): use curl -g to disable glob parsing. when piping to jq or other commands, make sure $MATON_API_KEY and other env vars are properly expanded (avoid single quotes in bash; use double quotes or explicit variable assignment).

output contract

success response: the gateway returns the exact response from the target API with the same HTTP status code and JSON/text body. the response is streamed directly, so content-type and headers from the target are preserved.
error response: if the gateway itself fails (400, 401, 429, 500 from the gateway), the response is a JSON object with an error message. if the error comes from the target API, the original status code and body are returned as-is.
connection management responses (ctrl.maton.ai): JSON objects with connection_id, status (one of ACTIVE, PENDING, FAILED), creation_time, last_updated_time, url, app, and metadata.
no persistent state: the gateway does not cache responses. each request hits the target API fresh (subject to that API's caching headers).

outcome signal

200-299 response from gateway: the request succeeded and the target API returned a success response. check the JSON body for the data you requested.
300-399 response: redirect from the target API (rare). the gateway passes it through.
401 or 403 from the target API: the OAuth token is valid but the user does not have permission for that resource in the target app. check permissions in the target service's settings.
404 from the target API: the endpoint or resource does not exist. verify the native API path against the target service's official docs.
connection status changes to ACTIVE after oauth: the user has successfully authorized the app and the gateway can now make requests on their behalf.
subsequent requests with the same app go through: once you have an active connection, you can make as many requests as you want without additional OAuth steps (until the token expires, roughly after 1 month, at which point you will get a 500 and need to refresh).

supported services

service	app name	base url proxied
Airtable	`airtable`	`api.airtable.com`
Apollo	`apollo`	`api.apollo.io`
Asana	`asana`	`app.asana.com`
Calendly	`calendly`	`api.calendly.com`
Chargebee	`chargebee`	`{subdomain}.chargebee.com`
ClickUp	`clickup`	`api.clickup.com`
Fathom	`fathom`	`api.fathom.ai`
Google Ads	`google-ads`	`googleads.googleapis.com`
Google Analytics Admin	`google-analytics-admin`	`analyticsadmin.googleapis.com`
Google Analytics Data	`google-analytics-data`	`analyticsdata.googleapis.com`
Google Calendar	`google-calendar`	`www.googleapis.com`
Google Docs	`google-docs`	`docs.googleapis.com`
Google Drive	`google-drive`	`www.googleapis.com`
Google Forms	`google-forms`	`forms.googleapis.com`
Gmail	`google-mail`	`gmail.googleapis.com`
Google Meet	`google-meet`	`meet.googleapis.com`
Google Play	`google-play`	`androidpublisher.googleapis.com`
Google Search Console	`google-search-console`	`www.googleapis.com`
Google Sheets	`google-sheets`	`sheets.googleapis.com`
Google Slides	`google-slides`	`slides.googleapis.com`
HubSpot	`hubspot`	`api.hubapi.com`
Jira	`jira`	`api.atlassian.com`
JotForm	`jotform`	`api.jotform.com`
Klaviyo	`klaviyo`	`a.klaviyo.com`
Mailchimp	`mailchimp`	`{dc}.api.mailchimp.com`
Notion	`notion`	`api.notion.com`
Outlook	`outlook`	`graph.microsoft.com`
Pipedrive	`pipedrive`	`api.pipedrive.com`
QuickBooks	`quickbooks`	`quickbooks.api.intuit.com`
Salesforce	`salesforce`	`{instance}.salesforce.com`
Slack	`slack`	`slack.com`
Stripe	`stripe`	`api.stripe.com`
Trello	`trello`	`api.trello.com`
Typeform	`typeform`	`api.typeform.com`
WhatsApp Business	`whatsapp-business`	`graph.facebook.com`
WooCommerce	`woocommerce`	`{store-url}/wp-json/wc/v3`
Xero	`xero`	`api.xero.com`
YouTube	`youtube`	`www.googleapis.com`

for detailed routing and payload examples per service, see the references directory.

quick reference examples

slack (post message)

curl -s -X POST "https://gateway.maton.ai/slack/api/chat.postMessage" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer $MATON_API_KEY" \
  -d '{"channel": "C0123456", "text": "Hello!"}'

hubspot (create contact)

curl -s -X POST "https://gateway.maton.ai/hubspot/crm/v3/objects/contacts" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer $MATON_API_KEY" \
  -d '{"properties": {"email": "john@example.com", "firstname": "John", "lastname": "Doe"}}'

google sheets (get values)

curl -s -X GET "https://gateway.maton.ai/google-sheets/v4/spreadsheets/122BS1sFN2RKL8AOUQjkLdubzOwgqzPT64KfZ2rvYI4M/values/Sheet1!A1:B2" \
  -H "Authorization: Bearer $MATON_API_KEY"

salesforce (soql query)

curl -s -X GET "https://gateway.maton.ai/salesforce/services/data/v64.0/query?q=SELECT+Id,Name+FROM+Contact+LIMIT+10" \
  -H "Authorization: Bearer $MATON_API_KEY"

airtable (list tables)

curl -s -X GET "https://gateway.maton.ai/airtable/v0/meta/bases/appgqan2NzWGP5sBK/tables" \
  -H "Authorization: Bearer $MATON_API_KEY"

notion (query database)

curl -s -X POST "https://gateway.maton.ai/notion/v1/data_sources/23702dc5-9a3b-8001-9e1c-000b5af0a980/query" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer $MATON_API_KEY" \
  -H "Notion-Version: 2025-09-03" \
  -d '{}'

stripe (list customers)

curl -s -X GET "https://gateway.maton.ai/stripe/v1/customers?limit=10" \
  -H "Authorization: Bearer $MATON_API_KEY"

code examples

javascript (node.js)

const response = await fetch('https://gateway.maton.ai/slack/api/chat.postMessage', {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Authorization': `Bearer ${process.env.MATON_API_KEY}`
  },
  body: JSON.stringify({ channel: 'C0123456', text: 'Hello!' })
});
const data = await response.json();
console.log(data);

python

import os
import requests

response = requests.post(
    'https://gateway.maton.ai/slack/api/chat.postMessage',
    headers={'Authorization': f'Bearer {os.environ["MATON_API_KEY"]}'},
    json={'channel': 'C0123456', 'text': 'Hello!'}
)
print(response.json())

error handling

status	meaning
400	missing or invalid connection for the requested app. verify the app name is in the supported services table and that you have created an active OAuth connection.
401	invalid, missing, or expired maton API key. check maton.ai/settings.
429	rate limited. you have sent more than 10 requests per second to the gateway. back off and retry. also check the target API's rate limits.
500	internal server error. if the app is in the supported services table, the most likely cause is an expired OAuth refresh token (connections older than 1 month). create a new connection and re-authorize via OAuth. see the decision points section.
4xx/5xx (other)	passthrough error from the target API. refer to that service's official API documentation.

tips and notes

use native api docs: always refer to the target service's official API documentation for the correct endpoint path and request payload schema.
headers are forwarded: custom headers (except Host and Authorization) are passed through to the target API. set Content-Type, Accept, or any service-specific headers as needed.
query params work: URL query parameters are passed through unchanged. e.g., ?limit=10&offset=5 on the gateway URL will be forwarded to the target API.
all http methods supported: GET, POST, PUT, PATCH, DELETE are all supported. the gateway is a pure passthrough proxy.
curl with special characters: if your URL or body contains brackets (e.g., fields[], sort[]), use curl -g to disable glob parsing. example: curl -g "https://gateway.maton.ai/...?fields[]=id&fields[]=name".
env var expansion in pipes: when piping curl output to jq or other commands, use double quotes so shell variables like $MATON_API_KEY expand correctly. avoid single quotes, which prevent expansion.
quickbooks special case: for quickbooks, use :realmId as a placeholder in your path (e.g., /v2/company/:realmId/query). the gateway will replace it with the connected realm ID automatically.
connection defaults: if you have multiple active connections for the same app and do not specify a Maton-Connection header, the gateway uses the oldest (default) connection. always specify the header explicitly in multi-connection scenarios.
rate limit backoff: use exponential jitter when retrying after a 429 error. the gateway enforces 10 req/sec per account, but target APIs may have their own stricter limits.
test connections: after creating an OAuth connection, test it with a simple read request (e.g., GET for list endpoints) before making write requests (POST, PUT, DELETE).

credits: original documentation and gateway implementation by the maton team.

resources:

Api Gateway 1.0.7

related skills

API Gateway 1.0.7

intent

inputs

procedure

decision points

output contract

outcome signal

supported services

quick reference examples

slack (post message)

hubspot (create contact)

google sheets (get values)

salesforce (soql query)

airtable (list tables)

notion (query database)

stripe (list customers)

code examples

javascript (node.js)

python

error handling

tips and notes