Claude-skill-registry api-gateway

install

source · Clone the upstream repo

git clone https://github.com/majiayu000/claude-skill-registry

Claude Code · Install into ~/.claude/skills/

T=$(mktemp -d) && git clone --depth=1 https://github.com/majiayu000/claude-skill-registry "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/data/api-gateway-skill" ~/.claude/skills/majiayu000-claude-skill-registry-api-gateway-590f17 && rm -rf "$T"

manifest: skills/data/api-gateway-skill/SKILL.md

safety · automated scan (low risk)

This is a pattern-based risk scan, not a security review. Our crawler flagged:

makes HTTP requests (curl)
references .env files

Always read a skill's source content before installing. Patterns alone don't mean the skill is malicious — but they warrant attention.

source content

API Gateway

Passthrough proxy for direct access to third-party APIs using managed auth connections. The API gateway lets you call native API endpoints directly.

Quick Start

# Native Slack API call
curl -s -X POST 'https://gateway.maton.ai/slack/api/chat.postMessage' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -d '{"channel": "C0123456", "text": "Hello from gateway!"}'

IMPORTANT: If you receive a 500 Internal Server Error, this does NOT mean the service is unsupported. The most common cause is an expired OAuth refresh token (connections older than 1 month). See the "Troubleshooting 500 Internal Server Error" section below to create a new connection and retry with the new connection ID.

Base URL

https://gateway.maton.ai/{app}/{native-api-path}

Replace

{app}

with the service name and

{native-api-path}

with the actual API endpoint path.

Authentication

All requests require the Maton API key in the Authorization header:

Authorization: Bearer YOUR_API_KEY

The API gateway automatically injects the appropriate OAuth token for the target service.

Environment Variable: You can set your API key as the

MATON_API_KEY

environment variable:

export MATON_API_KEY="YOUR_API_KEY"

Getting Your API Key

Sign in or create an account at maton.ai
Go to maton.ai/settings
Click the copy button on the right side of API Key section to copy it

Connection Management

Connection management uses a separate base URL:

https://ctrl.maton.ai

List Connections

curl -s -X GET 'https://ctrl.maton.ai/connections?app=slack&status=ACTIVE' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Query Parameters (optional):

```
app
```
- Filter by service name (e.g.,
```
slack
```
,
```
hubspot
```
,
```
salesforce
```
)
```
status
```
- Filter by connection status (
```
ACTIVE
```
,
```
PENDING
```
,
```
FAILED
```
)

Response:

{
  "connections": [
    {
      "connection_id": "21fd90f9-5935-43cd-b6c8-bde9d915ca80",
      "status": "ACTIVE",
      "creation_time": "2025-12-08T07:20:53.488460Z",
      "last_updated_time": "2026-01-31T20:03:32.593153Z",
      "url": "https://connect.maton.ai/?session_token=5e9...",
      "app": "slack",
      "metadata": {}
    }
  ]
}

Create Connection

curl -s -X POST 'https://ctrl.maton.ai/connections' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -d '{"app": "slack"}'

Get Connection

curl -s -X GET 'https://ctrl.maton.ai/connections/21fd90f9-5935-43cd-b6c8-bde9d915ca80' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Response:

{
  "connection": {
    "connection_id": "21fd90f9-5935-43cd-b6c8-bde9d915ca80",
    "status": "ACTIVE",
    "creation_time": "2025-12-08T07:20:53.488460Z",
    "last_updated_time": "2026-01-31T20:03:32.593153Z",
    "url": "https://connect.maton.ai/?session_token=5e9...",
    "app": "slack",
    "metadata": {}
  }
}

Open the returned URL in a browser to complete OAuth.

Delete Connection

curl -s -X DELETE 'https://ctrl.maton.ai/connections/21fd90f9-5935-43cd-b6c8-bde9d915ca80' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Specifying Connection

If you have multiple connections for the same app, you can specify which connection to use by adding the

Maton-Connection

header with the connection ID:

curl -s -X POST 'https://gateway.maton.ai/slack/api/chat.postMessage' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -H 'Maton-Connection: 21fd90f9-5935-43cd-b6c8-bde9d915ca80' \
  -d '{"channel": "C0123456", "text": "Hello!"}'

If omitted, the gateway uses the default (oldest) active connection for that app.

Supported Services

Service	App Name	Base URL Proxied
Airtable	`airtable`	`api.airtable.com`
Apollo	`apollo`	`api.apollo.io`
Asana	`asana`	`app.asana.com`
Calendly	`calendly`	`api.calendly.com`
Chargebee	`chargebee`	`{subdomain}.chargebee.com`
ClickUp	`clickup`	`api.clickup.com`
Fathom	`fathom`	`api.fathom.ai`
Google Ads	`google-ads`	`googleads.googleapis.com`
Google Analytics Admin	`google-analytics-admin`	`analyticsadmin.googleapis.com`
Google Analytics Data	`google-analytics-data`	`analyticsdata.googleapis.com`
Google Calendar	`google-calendar`	`www.googleapis.com`
Google Docs	`google-docs`	`docs.googleapis.com`
Google Drive	`google-drive`	`www.googleapis.com`
Google Forms	`google-forms`	`forms.googleapis.com`
Gmail	`google-mail`	`gmail.googleapis.com`
Google Meet	`google-meet`	`meet.googleapis.com`
Google Play	`google-play`	`androidpublisher.googleapis.com`
Google Search Console	`google-search-console`	`www.googleapis.com`
Google Sheets	`google-sheets`	`sheets.googleapis.com`
Google Slides	`google-slides`	`slides.googleapis.com`
HubSpot	`hubspot`	`api.hubapi.com`
Jira	`jira`	`api.atlassian.com`
JotForm	`jotform`	`api.jotform.com`
Notion	`notion`	`api.notion.com`
Outlook	`outlook`	`graph.microsoft.com`
QuickBooks	`quickbooks`	`quickbooks.api.intuit.com`
Salesforce	`salesforce`	`{instance}.salesforce.com`
Slack	`slack`	`slack.com`
Stripe	`stripe`	`api.stripe.com`
Typeform	`typeform`	`api.typeform.com`
Xero	`xero`	`api.xero.com`

See references/ for detailed routing guides per provider:

Airtable - Records, bases, tables
Apollo - People search, enrichment, contacts
Asana - Tasks, projects, workspaces, webhooks
Calendly - Event types, scheduled events, availability, webhooks
Chargebee - Subscriptions, customers, invoices
ClickUp - Tasks, lists, folders, spaces, webhooks
Fathom - Meeting recordings, transcripts, summaries, webhooks
Google Ads - Campaigns, ad groups, GAQL queries
Google Analytics Admin - Reports, dimensions, metrics
Google Analytics Data - Reports, dimensions, metrics
Google Calendar - Events, calendars, free/busy
Google Docs - Document creation, batch updates
Google Drive - Files, folders, permissions
Google Forms - Forms, questions, responses
Gmail - Messages, threads, labels
Google Meet - Spaces, conference records, participants
Google Play - In-app products, subscriptions, reviews
Google Search Console - Search analytics, sitemaps
Google Sheets - Values, ranges, formatting
Google Slides - Presentations, slides, formatting
HubSpot - Contacts, companies, deals
Jira - Issues, projects, JQL queries
JotForm - Forms, submissions, webhooks
Notion - Pages, databases, blocks
Outlook - Mail, calendar, contacts
QuickBooks - Customers, invoices, reports
Salesforce - SOQL, sObjects, CRUD
Slack - Messages, channels, users
Stripe - Customers, subscriptions, payments
Typeform - Forms, responses, insights
Xero - Contacts, invoices, reports

Examples

Slack - Post Message (Native API)

# Native Slack API: POST https://slack.com/api/chat.postMessage
curl -s -X POST 'https://gateway.maton.ai/slack/api/chat.postMessage' \
  -H 'Content-Type: application/json; charset=utf-8' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -d '{"channel": "C0123456", "text": "Hello!"}'

HubSpot - Create Contact (Native API)

# Native HubSpot API: POST https://api.hubapi.com/crm/v3/objects/contacts
curl -s -X POST 'https://gateway.maton.ai/hubspot/crm/v3/objects/contacts' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -d '{
    "properties": {
      "email": "john@example.com",
      "firstname": "John",
      "lastname": "Doe"
    }
  }'

Google Sheets - Get Spreadsheet Values (Native API)

# Native Sheets API: GET https://sheets.googleapis.com/v4/spreadsheets/{id}/values/{range}
curl -s -X GET 'https://gateway.maton.ai/google-sheets/v4/spreadsheets/122BS1sFN2RKL8AOUQjkLdubzOwgqzPT64KfZ2rvYI4M/values/Sheet1!A1:B2' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Salesforce - SOQL Query (Native API)

# Native Salesforce API: GET https://{instance}.salesforce.com/services/data/v64.0/query?q=...
curl -s -X GET 'https://gateway.maton.ai/salesforce/services/data/v64.0/query?q=SELECT+Id,Name+FROM+Contact+LIMIT+10' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Airtable - List Tables (Native API)

# Native Airtable API: GET https://api.airtable.com/v0/meta/bases/{id}/tables
curl -s -X GET 'https://gateway.maton.ai/airtable/v0/meta/bases/appgqan2NzWGP5sBK/tables' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Notion - Query Database (Native API)

# Native Notion API: POST https://api.notion.com/v1/data_sources/{id}/query
curl -s -X POST 'https://gateway.maton.ai/notion/v1/data_sources/23702dc5-9a3b-8001-9e1c-000b5af0a980/query' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -H 'Notion-Version: 2025-09-03' \
  -d '{}'

Stripe - List Customers (Native API)

# Native Stripe API: GET https://api.stripe.com/v1/customers
curl -s -X GET 'https://gateway.maton.ai/stripe/v1/customers?limit=10' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Code Examples

JavaScript (Node.js)

const response = await fetch('https://gateway.maton.ai/slack/api/chat.postMessage', {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Authorization': `Bearer ${process.env.MATON_API_KEY}`
  },
  body: JSON.stringify({ channel: 'C0123456', text: 'Hello!' })
});

Python

import os
import requests

response = requests.post(
    'https://gateway.maton.ai/slack/api/chat.postMessage',
    headers={'Authorization': f'Bearer {os.environ["MATON_API_KEY"]}'},
    json={'channel': 'C0123456', 'text': 'Hello!'}
)

Error Handling

Status	Meaning
400	Missing connection for the requested app
401	Invalid or missing Maton API key
429	Rate limited (10 requests/second per account)
500	Internal Server Error (see troubleshooting below)
4xx/5xx	Passthrough error from the target API

Errors from the target API are passed through with their original status codes and response bodies.

Troubleshooting 500 Internal Server Error

IMPORTANT: A 500 Internal Server Error does NOT mean the service is unsupported. If the app is listed in the Supported Services table above, the error is likely due to an expired OAuth refresh token.

When you receive a 500 Internal Server Error, ALWAYS follow these steps before concluding there is an issue:

Connections that have been active for more than 1 month may have expired OAuth refresh tokens. To resolve:

Create a new connection for the app:

curl -s -X POST 'https://ctrl.maton.ai/connections' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -d '{"app": "APP_NAME"}'

Get the OAuth URL by calling the GET connection endpoint with the new connection ID from step 1:

curl -s -X GET 'https://ctrl.maton.ai/connections/NEW_CONNECTION_ID' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Share the returned
```
url
```
with the user and ask them to complete the OAuth flow in their browser.

After the user completes OAuth, retry the original request using the new connection ID via the

Maton-Connection

header:

curl -s -X GET 'https://gateway.maton.ai/APP_NAME/...' \
  -H 'Authorization: Bearer YOUR_API_KEY' \
  -H 'Maton-Connection: NEW_CONNECTION_ID'

Once the new connection status is

ACTIVE

and working, ask the user if they want to delete the old connection:

curl -s -X DELETE 'https://ctrl.maton.ai/connections/OLD_CONNECTION_ID' \
  -H 'Authorization: Bearer YOUR_API_KEY'

Rate Limits

10 requests per second per account
Target API rate limits also apply

Tips

Use native API docs: Refer to each service's official API documentation for endpoint paths and parameters.
Headers are forwarded: Custom headers (except
```
Host
```
and
```
Authorization
```
) are forwarded to the target API.
Query params work: URL query parameters are passed through to the target API.
All HTTP methods supported: GET, POST, PUT, PATCH, DELETE are all supported.
QuickBooks special case: Use
```
:realmId
```
in the path and it will be replaced with the connected realm ID.