Hollow connector documentation

Hollow connectors let developers expose external APIs and services as installable capabilities inside Hollow. This documentation describes the connector model, how user-owned connections work, the data Hollow expects, and how a connector moves from draft to installable runtime.

Current status Developer dashboard access is currently private. The public documentation here is intended to be complete enough that a developer can understand the connector model before getting dashboard access.

Overview

A Hollow connector is a manifest-driven integration definition. It describes what the connector does, how it authenticates, what setup data it needs, which actions it exposes, and how Hollow should represent it in the product.

Connectors are meant to be installable by end users. A user can browse a connector, understand what it touches, authenticate their own account, and then let Hollow call the connector’s declared actions.

Connector model

A connector has four core parts:

Listing metadata: name, slug, description, category, install copy.
Connection model: auth type, auth schema, setup mode, scopes.
Action model: one or more actions with input/output schemas.
Manifest details: additional structured data Hollow can store and use.

Hollow stores the connector definition, publishes it in the app, records user installs, and executes actions through the connector runtime. Developers do not need direct database or infrastructure access.

What Hollow hosts

Hosted by Hollow

Connector listings and install metadata
User install records
User connection state
Generic OAuth callback endpoint
Manifest-driven action runtime

Not hosted by Hollow

Your provider app credentials
Your provider-specific OAuth registration
Your custom webhook or backend logic
Your external API or SaaS product

What developers host

In the common case, developers do not need to host anything beyond their own product or API. If a connector requires inbound webhooks, signature validation, provider-specific orchestration, or custom runtime logic, the developer should host that logic themselves and let Hollow call it over HTTPS.

Developers do not receive shell, server, or database access to the Hollow backend. The contract is declarative: you provide connector metadata and connection details through the dashboard, and Hollow handles the app-side install and user connection lifecycle.

Required fields

A draft connector can be incomplete, but a published connector must be coherent enough for users and Hollow to work with it safely.

Field	Purpose	Publishing expectation
`name`	Human-readable connector name.	Required.
`slug`	Stable programmatic identifier.	Required and unique.
`tagline` / `description`	Plain-English explanation for users.	Required.
`auth_type`	Defines how the user connects.	Required.
`setup_mode`	Defines how the user completes setup.	Required.
`actions`	Executable capabilities the connector exposes.	At least one action required for published connectors.
`identifiers`	Keywords Hollow can later use for routing relevance.	At least 5 identifiers required for published connectors.

Identifiers

Identifiers are short keywords or phrases that tell Hollow when a connector should be considered. They are not user-facing marketing copy. They are routing hints.

Good identifier examples for a GitHub issue connector:

github issues
repo issue
bug ticket
open issue
assign issue

Published connectors currently require at least five identifiers so Hollow has enough metadata to reason about connector relevance.

Actions

Actions are the executable units of a connector. Each action should have a stable key, a plain-English description, and an input shape that Hollow can reliably fill.

Strong action definitions usually include:

A clear key such as create_issue
A concise description of what the action does
An input schema with named fields
Output structure if the action returns meaningful data
A scope that matches the actual upstream permission boundary

Auth types

Hollow supports multiple connector auth types.

Auth type	Use case	Notes
`none`	Public or unauthenticated APIs.	No user connection step required.
`oauth`	User signs into the provider’s product.	Best default for user-owned account access.
`api_key`	User pastes a provider-issued API key.	Good for developer tools and BYO-key flows.
`bearer`	User supplies an existing bearer token.	Use only when the upstream system already issues tokens directly.
`basic`	Username/password style auth.	Use sparingly; prefer OAuth when possible.
`manual`	Custom connection details or guided setup.	Good for internal tools and unusual provider requirements.

Setup modes

Setup mode describes the user experience Hollow should show after installation.

guided: Hollow walks the user through the connection flow.
manual: The user provides API keys or settings manually.
external: The user must complete part of setup on the provider side.

In practice, a connector can combine a setup mode with an auth type. For example, oauth plus guided is a common pairing.

Install flow

A typical install flow looks like this:

User browses the connector listing in Hollow.
User installs the connector.
Hollow checks the auth type and setup mode.
If needed, Hollow begins a connection flow.
Connection state is saved against that specific user install.
The connector becomes available for runtime use.

OAuth flow

For OAuth connectors, the user authenticates against the developer’s own product or provider account. Hollow hosts the generic callback endpoint and stores the resulting user connection state.

OAuth callback endpoint Register this callback with your provider when you build an OAuth connector:

https://hollow-backend.fly.dev/v1/connectors/oauth/callback

High-level OAuth flow:

User installs the connector in Hollow.
Hollow starts the connection flow.
Hollow redirects the user to the provider authorize URL.
The provider redirects back to Hollow’s OAuth callback.
Hollow completes the connection and stores the result for that user.

Action invocation

At runtime, Hollow chooses a connector action and invokes it with a normalized input payload. For connectors this generally means:

Resolve the installed connector and action key.
Verify the user has a valid connection.
Build request input from the action parameters.
Call the runtime target described by the connector definition.
Return output or error state to Hollow.

Publishing

Draft connectors can be incomplete. Published connectors should be ready for real installs. Before publishing, check:

The listing copy is understandable to non-developers.
At least one real action exists.
At least five identifiers exist.
The auth model matches the real provider flow.
Scopes and install copy accurately describe access.
The connector has been tested with a real user account.

Example connector payload

The dashboard is the normal way to manage connectors, but it helps to understand the shape Hollow expects.

{
  "name": "Linear Incident Runner",
  "slug": "linear-incident-runner",
  "tagline": "Create and triage Linear incidents from Hollow.",
  "description": "Connect Linear and let Hollow create incidents, search issues, and update triage state.",
  "category": "productivity",
  "auth_type": "oauth",
  "setup_mode": "guided",
  "visibility": "private",
  "status": "draft",
  "install_copy": "Connect your Linear account so Hollow can search and update incidents.",
  "identifiers": [
    "linear incidents",
    "incident triage",
    "product issue",
    "bug ticket",
    "engineering issue"
  ],
  "scopes": ["read", "write"],
  "auth_schema": {
    "flow": "oauth",
    "authorize_url": "https://provider.example.com/oauth/authorize",
    "token_url": "https://provider.example.com/oauth/token",
    "client_id": "YOUR_CLIENT_ID",
    "client_secret": "YOUR_CLIENT_SECRET"
  },
  "actions": [
    {
      "key": "search_incidents",
      "name": "Search incidents",
      "description": "Search existing incidents in Linear.",
      "input_schema": {
        "type": "object",
        "properties": {
          "query": { "type": "string" }
        }
      }
    }
  ],
  "manifest": {
    "version": "1.0"
  }
}

OAuth callback reference

Hollow hosts the callback URL. The developer is still responsible for registering that URL with the upstream OAuth provider.

https://hollow-backend.fly.dev/v1/connectors/oauth/callback

If your provider requires a single exact callback value, use that exact URL. If your provider requires app-side deep linking, Hollow handles the app redirect after the callback completes.

Dashboard usage

The dashboard is where connector drafts are created, updated, and published. It is also where auth schema, settings schema, scopes, actions, manifest fields, and identifiers are entered.

Relevant pages:

Testing checklist

Install the connector with a fresh user account.
Complete the auth flow for the configured auth type.
Confirm the connector shows as connected.
Invoke every published action with at least one real payload.
Verify error handling for missing credentials or expired tokens.
Verify the listing copy still matches the actual permissions used.

Troubleshooting

OAuth redirect mismatch

Make sure the provider has this callback registered exactly: https://hollow-backend.fly.dev/v1/connectors/oauth/callback

Connector installs but cannot connect

Check the configured auth_type, setup_mode, authorize URL, token URL, client ID, and client secret.

Connector publishes but Hollow never chooses it

Check identifiers first. Published connectors should have at least five high-signal identifiers that reflect the actual user requests the connector is meant to handle.

Connector needs custom webhooks or custom server logic

Host that logic yourself and expose a stable HTTPS endpoint. Hollow does not host arbitrary developer code.