OAuth
OAuth (Open Authorization) is an open standard for token-based authorization that allows third-party applications to access a user's resources without exposing their password.
Understanding OAuth
OAuth is the security protocol behind the 'Sign in with Google' and 'Connect your Slack' buttons you see across the web. Instead of giving an application your password, OAuth provides a secure token with limited permissions. This token can be scoped to only allow specific actions, like reading your calendar but not deleting events. OAuth tokens can be revoked at any time, and they expire automatically. For AI assistants that need access to multiple tools, OAuth provides a secure way to connect without compromising your account security.
How GAIA Uses OAuth
GAIA uses OAuth 2.0 to securely connect to your tools. When you connect Gmail, Google Calendar, Slack, GitHub, or other services, you authorize GAIA through the service's official OAuth flow. GAIA receives scoped tokens with only the permissions it needs. You can revoke access at any time from either GAIA or the connected service. Your passwords are never shared with or stored by GAIA.
Related Concepts
API Integration
API integration is the process of connecting different software applications through their Application Programming Interfaces, enabling them to share data and functionality seamlessly.
Webhook
A webhook is an HTTP callback mechanism that allows one application to send real-time data to another application when a specific event occurs, enabling instant communication between systems.
Model Context Protocol (MCP)
Model Context Protocol (MCP) is an open standard that enables AI models to securely connect with external tools, data sources, and services through a unified interface.
Self-Hosting
Self-hosting is the practice of running software on your own servers or infrastructure instead of using a cloud-hosted service, giving you complete control over your data, configuration, and availability.
Frequently Asked Questions
Is it safe to connect my accounts to GAIA via OAuth?
Yes. OAuth is an industry-standard protocol used by Google, Microsoft, Slack, and thousands of other services. GAIA never sees your passwords. It receives limited-permission tokens that you can revoke at any time.
What permissions does GAIA request?
GAIA requests only the permissions necessary for its features. For example, it needs read and compose access for email management, read and write access for calendar management, and message access for Slack integration. Each permission is explicitly listed during the OAuth authorization flow.

