Connectors

A connector is a configured HTTP endpoint that executes the actual write action on behalf of an agent. Connectors are the bridge between Relynt’s policy decisions and your target systems.

How connectors work

1. An agent sends a request to the Relynt gateway
2. The policy engine evaluates the request and returns allow (or an approval is granted)
3. Relynt forwards the action to the configured connector
4. The connector executes the HTTP call against the target system
5. The response is hashed and stored in the receipt

Policy allows → Connector executes → Response hashed → Receipt created

Generic HTTP connector

In v0, Relynt provides a generic HTTP connector that can be configured per organization. This connector makes HTTP requests to any target API.

Configuration

Each organization configures its connector with:

When connectors execute

Connectors are called only when the decision is allow:

Response hashing

After the connector executes, Relynt computes a SHA-256 hash of the response body and stores it as response_hash in the receipt. This allows you to verify what the target system returned without storing the full response.

{
  "response_hash": "sha256:e5f6g7h8..."
}

Security

• No secrets in receipts — Authorization headers and API keys are never stored in receipts or logs
• No secrets in responses — connector configuration secrets are redacted from all API responses
• Encrypted storage — connector credentials are encrypted at rest
• Scoped to organization — each organization has its own connector configuration