Skip to content
Permia
The MCP integration gateway

One endpoint for every tool your agents touch.

Stop pasting API keys and logins into every agent, IDE, and AI tool. Connect each app to Permia once — then reach all of it through a single, scoped, fully audited MCP endpoint with least-privilege keys you can revoke in one place.

Start building freeSee how it works

Managed OAuth & API-key connectors · No credit card required

mcp.config.json
{
  "mcpServers": {
    "permia": {
      "url": "https://api.permia.io/mcp",
      "headers": {
        "Authorization": "Bearer pk_live_•••••"
      }
    }
  }
}
60+
Integrations
1000+
Tools available
9
Categories
1
Endpoint to secure
The problem

Credentials shouldn't live in every tool you own

Every new agent or AI tool that needs your apps means another place your keys get pasted. Permia collapses that N×M sprawl into a single endpoint you actually control.

Without a gateway

  • Raw API keys and logins pasted into every agent, IDE, and AI tool
  • Credential sprawl: N apps × M tools, copied everywhere
  • No central place to revoke — rotate a key in dozens of configs
  • Over-broad access by default; no per-tool guardrails
  • No record of which tool did what, when, or on whose behalf

With Permia

  • Connect each app once — tokens land in an isolated vault
  • One MCP endpoint that every agent and tool reaches
  • Revoke a key or a whole connection from a single place
  • Least-privilege keys: scope each to exact tools, read / write / none
  • Every call attributable in one append-only audit trail
How it works

From scattered keys to one governed endpoint

Four steps from a pile of credentials to a single, scoped, audited gateway.

  1. 01

    Connect your apps once

    Click-connect each tool with managed OAuth, or add an API key. We own the OAuth app per provider, so there are no developer accounts or client secrets for you to manage. Tokens go straight into an isolated vault.

  2. 02

    Point your agent at one endpoint

    Drop a single MCP URL and one scoped key into your IDE, agent harness, or AI app. Permia aggregates and namespaces every connected tool behind api.permia.io — no per-app plumbing.

  3. 03

    It sees only what you scoped

    Each key is locked to specific providers and tools, at read / write / none — so an agent can only ever do the narrowest of the provider's, the user's, and your policy. Least privilege, enforced at call time.

  4. 04

    Every call is on the record

    Each tool call is attributable and append-only: which key, which tool, what it did, and when. Audit entries are metadata-only by default, so you get accountability without warehousing provider content.

Connectors

60+ native integrations, 1000+ tools, one key

We build and maintain each connector ourselves — managed OAuth or API key, served from our own origin. Across 9 categories, all reachable through the same scoped endpoint.

Gmail
Google Calendar
Google Drive
Google Docs
Google Sheets
Slack
Outlook
Microsoft Teams
GitHub
Jira
Linear
Gmail
Google Calendar
Google Drive
Google Docs
Google Sheets
Slack
Outlook
Microsoft Teams
GitHub
Jira
Linear
Notion
Asana
Airtable
Salesforce
HubSpot
Zendesk
ClickUp
Discord
Dropbox
Stripe
Snowflake
Notion
Asana
Airtable
Salesforce
HubSpot
Zendesk
ClickUp
Discord
Dropbox
Stripe
Snowflake
CommsProductivityDevProject MgmtCRMStorageDataSupportFinance
Governance

Per-identity, per-key scoping — down to the single tool

Give each agent or app its own identity, then mint keys with a precise policy. Lock a key to specific providers and set read, write, or none per tool. The effective permission is always the narrowest of the provider's grant, the user's consent, and your policy.

  • Read / write / none, per provider and per tool
  • Bulk toggle whole providers, or tune individual tools
  • Revoke a key — or an entire connection — in one click

production-agent

pk_live_•••• · scoped key

active
  • GitHubwrite
  • Slackread
  • Google Sheetsread
  • Stripenone
  • Notionwrite
This key can write to GitHub & Notion, read Slack & Sheets, and never touch Stripe.

Audit trail

metadata-only

  • github.create_pull_request

    production-agent · allowed

    2s ago

  • slack.post_message

    support-bot · allowed

    11s ago

  • stripe.create_refund

    production-agent · denied by policy

    33s ago

  • google-sheets.get_values

    analytics · allowed

    1m ago
Audit trail

Every tool call, on the record

Accountability is built in from day one. Each call records which key, which tool, the outcome, and when — append-only and attributable. Entries are metadata-only by default, so you see exactly what happened without storing the content that passed through.

  • Attributable: which key and identity made each call
  • Append-only history — nothing is silently edited
  • Denied-by-policy calls are logged too, not just successes

What Permia is built on

Least privilege, always

The default answer is no. Access is granted explicitly, per tool, and never broader than it needs to be.

Truthful by design

Tokens are never handed back. Content is never warehoused. What you scope is exactly what runs.

Accountable end to end

If it happened, it's on the record — attributable to a key and a tool, in an append-only log.

Security & trust

Built so credentials stay where they belong

The whole point of a gateway is to give you the controls you lose when keys are spread across tools: least privilege, central revocation, and complete auditability.

Tenant-isolated credential vault

Connected-provider tokens live in an isolated, per-tenant vault with per-tenant encryption. They are never exposed back to the dashboard or to other tenants, and are decrypted only in memory at the moment a call needs them.

Database-layer tenant isolation

Tenant data is separated at the database layer with row-level security, so one tenant's data can't be reached from another's context — isolation enforced below the application, not just within it.

Least privilege by key

A key can be locked to specific providers and tools at read / write / none. Scope is enforced at call time, so an agent can never reach beyond the policy you gave it.

Dedicated secrets store

System and tenant secrets are held in a dedicated secrets store — not hard-coded in source and not sitting in plain environment files. Traffic is encrypted in transit with TLS.

Complete, append-only audit

Every tool call is attributable and append-only. Central revocation plus full auditability are exactly the controls you lose when raw credentials are scattered across tools.

Managed OAuth, one consent

We own the OAuth app per provider, so users consent once through the provider's own screen. You never handle client secrets, and revoking a connection purges its tokens.

What we do with your account and data

Permia is a conduit, not a data lake. Here's exactly how your connected accounts and their content are handled.

Your content isn't stored

A sheet's cells, a doc's text, an email — provider content passes through transiently only to fulfill a request. It is never stored, retained, indexed, or sold.

Never used to train models

We do not use your content or connected-account data to train any AI or machine-learning models. Full stop.

Metadata-only audit

The audit log records what happened — key, tool, outcome, timestamp — not the provider content that passed through. Accountability without a content warehouse.

Disconnect means gone

When you disconnect a provider, its stored tokens are purged. Google API usage follows Google's Limited Use requirements.

Read the full Privacy Policy and Terms.

Give your agents the tools — not the keys

Connect your apps once and hand every agent a single scoped, audited endpoint. Get started in minutes.

Start building freeSign in

No credit card required