A Knixus Technologies Product · Seqular Ecosystem
Knixus Cloud Service

CS

Cloud  •  Service

SSO Proxy Gateway MCP Access API Gateway Session Transfer Multi-tenant Full Isolation Web · API · MCP OpenStack Integration Buildbot Bacula PostgreSQL Redis Any Backend

One login. Every product. Every backend. Every interface. CS is the unified cloud service gateway of the Knixus ecosystem — handling authentication, access control, proxy routing, and session management so your applications and users never have to think about it. Like AWS for the cloud, CS for Knixus.

1
Login for Everything
Your Seqular identity — zero separate credentials
3
Access Interfaces
Web, REST API, and MCP — all through one gateway
100%
Tenant Isolation
Zero data cross-contamination between organizations
Any
Backend
Cloud VMs, build systems, databases, APIs — all connected
What Is CS

One gateway. Every product. No complexity.

Knixus CS is the cloud service backbone of the entire Knixus ecosystem. Every product — seq-assist, knix-doc, mcp-loc, voice-beartell, and any future service — is accessed through CS. It handles authentication, subscription management, proxy routing, and session security so each product can focus on what it does best.

One identity — your Seqular account CS delegates all authentication to Mastodon SSO on network.seqular.net. No passwords to manage, no user databases to maintain — your Seqular identity is your key to the entire ecosystem.
Transparent access to any backend Whether you're opening a web application, calling a REST API, or connecting an AI agent via MCP — CS routes your request to the right backend service, validates your session, and keeps your connection secure.
Integrates with any service — instantly Add a new backend service to CS with a proxy rule and it's immediately accessible to authorized users through the same login, the same API, and the same security model. No code changes on either side.
Knixus CS — Access Architecture
User (Browser · API Client · MCP Agent)
CS — Knixus Cloud Service
                 
seq-assist
knix-doc
mcp-loc
voice-beartell
What CS handles transparently
SSO Login Session Tokens Proxy Routing Subscription Check Tenant Isolation API Keys MCP Auth
Access Interfaces

Web. API. MCP. Every interface, one gateway.

CS routes requests across three distinct interfaces — all authenticated, all isolated, all managed from a single admin panel.

Web

Full HTML web application access. CS transparently proxies browser requests to the backend service — the user stays on the Knixus domain, the backend serves its full interface. Login-protected, session-validated, and subscription-gated on every request.

URL stays on CS • Backend serves full web UI • Session checked per request
REST API

Programmatic access via API keys — no browser session required. Generate a client key once, use it in scripts, CI/CD pipelines, mobile apps, or any HTTP client. CS validates the key, checks the subscription, and forwards the request to the backend.

API key auth • JSON in / JSON out • Full REST compatibility
MCP

Native Model Context Protocol access for AI agents and Claude Desktop. CS exposes MCP endpoints for any connected backend service — an AI agent gets its tools, knowledge, and execution environment through CS without needing a browser session or explicit API key handling.

Claude Desktop ready • Agent-native • No browser required
Core Capabilities

Everything the Knixus ecosystem runs on

Mastodon SSO

Authentication is fully delegated to network.seqular.net — no passwords stored, no credential management. Your Seqular account is your identity across every product and every backend in the ecosystem.

Transparent Proxy & Routing

HTTP proxy forwarding with intelligent routing rules. Requests are forwarded to the correct backend with session tokens injected via Authorization headers and query parameters. The user never sees the backend URL.

Session Transfer

Secure one-time tokens for cross-device session handoffs and redirector-style product access. Tokens are SHA256-hashed, single-use, and short-lived — designed to pass sessions between CS and backend services without exposure.

Multi-tenant Full Isolation

Every organization's subscriptions, proxy rules, and access permissions are fully isolated. Multiple organizations can use the same backend service through CS with zero data visibility between them.

Backend Orchestration

CS connects to any backend — cloud virtual machines via OpenStack, build pipelines via Buildbot, backup systems via Bacula, databases, and custom services. Add a proxy rule and a new backend is immediately accessible.

API Keys & Client Access

Generate API client keys for headless, non-browser access. Use them in scripts, pipelines, CLI tools, and AI agents. Subscription validation is enforced on every key-authenticated request — same security model as browser sessions.

Connected Backends

From AI tools to cloud infrastructure — all through one door

CS is not just a portal for Knixus products. It is the security and routing layer for every service in the Knixus cloud ecosystem. Any backend that a Knixus customer needs can be connected — and once connected, it is immediately available to authorized users with the same reliability, the same isolation, and the same simplicity.

AI & developer tools seq-assist (Mastodon AI assistant), knix-doc (RAG & MCP server), mcp-loc (QA toolset), voice-beartell (AI voice call center) — every Knixus and partner product is accessed through CS.
Cloud infrastructure services OpenStack virtual machine management, Buildbot CI/CD pipeline access, Bacula backup operations, database services — CS provides a secure, authenticated gateway to infrastructure that would otherwise require direct network access.
Development environment services Redmine project management, Artifactory package registry, monitoring dashboards — each organization's development environment runs as isolated instances on Knixus cloud, all accessible through CS with a single login.
CS Admin — Proxy Rules
Rule / TargetWebAPIMCP
seq-assist
knix-doc
mcp-loc
voice-beartell
Buildbot CI
Redmine
Add any backend — one proxy rule, immediate access for all authorized users.
For End Users

What you get from day one

One account, everything

Sign in once with your Seqular account. Every product you are subscribed to is immediately accessible — no additional logins, no separate passwords, no account management.

Your personal dashboard

A clean overview of all your active subscriptions, recent activity, and product access. Manage your profile, notification preferences, and API keys from one place.

Access from anywhere

Browser, API client, CLI tool, AI agent, or mobile app — CS provides the same secure, authenticated access regardless of how you connect. Session transfer enables secure cross-device handoffs.

Your data, only yours

Full tenant isolation means no other organization can see your data, your usage, or your subscriptions — even when sharing the same backend infrastructure. CS enforces this on every single request.

Identity powered by the Seqular network

CS uses Mastodon SSO via network.seqular.net as its only authentication provider. Every user is a member of the Seqular community. No password databases. No registration forms. Your federated social identity becomes your cloud service identity.

Knixus Cloud Service

Your key to everything Knixus

One login. Every product. Every backend. Every interface. Sign in with your Seqular account and access the full Knixus ecosystem.