Bezel Workflow connector-credential-spec
internal prototype · canonical JSON + Dreamborn Forge HTML
internal generated
connector-credential-spec · supabase_json

Bezel Workflow connector-credential-spec

connector-credential-spec artifact · for Bezel Workflow · status draft

Planning Surface

Use this to decide what happens next.

Status

draft

Agent Handoff
Start Here

connector-credential-spec artifact · for Bezel Workflow · status draft

Completion Evidence

No explicit evidence field yet. Require tests, screenshots, linked PRs, or reviewed outputs before marking complete.

Artifact Shape
  • kind: connector-credential-spec
  • repo: /Users/justinking/Vaults/Projects/bezel-api
  • project: Bezel Workflow
  • purpose: Define the connector and credential model needed to compete with n8n/Zapier while preserving Bezel’s agent-native pull queue architecture.
  • created by: atlas-codex
  • updated at: 2026-05-09T13:17:30.522Z
  • schema version: connector-credential.v1
  • n8n gap to match: 4 items
  • source memory id: 99edd8d2-5780-43a2-bbd0-03982353768a
  • connector manifest: id: string, auth: object, name: string, roles: object, actions: object, version: string, triggers: object, rate_limits: object, local_adapter: string, hosted_adapter: string
  • bezel differentiators: 5 items
  • architecture decision ref: 3a1bb081-67f9-41ae-9600-a91fbb14ecda
Structured Payload

Machine-readable source fields

kind

connector-credential-spec

repo

/Users/justinking/Vaults/Projects/bezel-api

project

Bezel Workflow

purpose

Define the connector and credential model needed to compete with n8n/Zapier while preserving Bezel’s agent-native pull queue architecture.

created by

atlas-codex

updated at

2026-05-09T13:17:30.522Z

schema version

connector-credential.v1

n8n gap to match
  • large credential library
  • node/action catalog
  • workflow execution visibility
  • manual testing from builder
source memory id

99edd8d2-5780-43a2-bbd0-03982353768a

connector manifest
id

gmail

auth
typescopescredential fields
oauth2- gmail.send - gmail.readonly
name

Gmail

roles
  • roles.gmail
actions
idtitleself healinput schema refoutput schema ref
email.sendSend emailschema_interpretation_allowedgmail.email_send.input.v1gmail.email_send.output.v1
email.searchSearch emaillimitedgmail.email_search.input.v1gmail.email_search.output.v1
version

1.0.0

triggers
idtypeoutput schema ref
email.receivedpoll|webhookgmail.email_event.v1
rate limits
strategy

connector_default|credential_scoped|workspace_scoped

local adapter

mcp:gmail or sdk:gmail

hosted adapter

oauth-backed Bezel connector runner

bezel differentiators
  • role-based connector agent pools
  • step-level pull claims
  • self-healing response interpretation
  • structured completion events
  • runtime redaction boundary
architecture decision ref

3a1bb081-67f9-41ae-9600-a91fbb14ecda

credential reference model
audit
  • created_by
  • last_used_at
  • last_used_by_run_id
  • last_used_by_step_id
scope

workflow|workspace|user|local_machine

auth type

oauth2|api_key|service_account|local_env|doppler|mcp_session

connector

gmail

credential ref

cred_gmail_ops

secret pointer

opaque pointer only; never raw secret

vault provider

local_keychain|doppler|gcp_secret_manager|cloudflare_secret|postgres_encrypted_reference

allowed actions
  • email.send
  • email.search
initial connector sequence
  • HTTP webhook/request
  • Gmail
  • Google Sheets
  • HubSpot
  • Slack
  • Local filesystem/repo command connector for internal dogfooding
self healing policy levels
levelbehavior
noneStrict schema; fail on unexpected response.
interpret_responseAgent may map unexpected but semantically obvious response fields to expected output schema and record evidence.
retry_with_adjusted_requestAgent may adjust request params/body within declared action schema and retry.
human_approval_requiredAgent proposes connector repair/remediation and pauses for approval before continuing.
code_repair_prohibited_v1No autonomous connector code changes in V1 production runtime.