Security Core
Names, emails, SSNs and custom entities detected and redacted in real time — before they leave your network.
API keys, database credentials and SSH keys caught mid-prompt. Block or obfuscate, your choice.
Every interaction logged with safety scores. Know exactly what your organization sends to AI.
Granular redaction and access rules per workspace, team or user — managed from one dashboard.
Zero-history conversations. Nothing saved to history, nothing visible to others — privacy on top of privacy.
OpenAI, Gemini, Claude, Grok, DeepSeek, MiniMax — switch providers without changing your security posture.



Inside the Gateway
Not add-ons. Not plugins. Everything below ships in the gateway, configured per workspace.
01 · Protection Modes
Choose how the firewall reacts when sensitive data is detected. Per workspace, inherited by every member.
Obfuscate
PII replaced with placeholders. Prompts still work, real data never leaves.
Block
Sensitive messages stopped cold, with a clear reason shown.
Disabled
Full passthrough. Still logged, still visible in metrics.
Your message was blocked because it contains sensitive information.
Reason
Secret detection gate blocked: Aadhaar Number
Detected
Aadhaar Number
Your message was obfuscated to protect sensitive information.
Detected
Email Address
02 · Interactive Artifacts
Code, documents and spreadsheets in an interactive panel beside the chat. Created, edited and versioned without leaving the conversation.
Code artifacts
Syntax highlighting, inline editing and live preview in a sandbox.
Version history
Step through every revision and roll back with one click.
Docs & sheets
Rich text with diff view, and data grids with CSV export.
03 · Teams & Controls
Isolated workspaces with their own members, policies, models and budgets.
Roles & invites
Invite by email, assign member or admin, remove instantly.
Token quotas
Hard limits per workspace with real-time usage tracking.
Feature toggles
Enable or disable AI chat, uploads and sharing per team.
04 · Complete Visibility
A live Security Control Center for admins. Safety scores, violations and usage across the whole workspace.
Safety Score
Percentage of requests that passed your security gates, in real time.
Per-user breakdown
Messages, tokens, blocked incidents and uploads for every member.
CSV export
One click to a full metrics report for compliance and audits.

The Platform
Every product talks to the same firewall engine. Policies, redaction and audit enforced once, everywhere.
Your team uses
Safely reaches
Platform
API, terminal, editor and phone — one account, one policy, every surface.
01 · API
A fully OpenAI-compatible API. Change one URL and every existing SDK, script and integration is firewalled.

Login
Connect any provider
One command to connect to OneFirewall or any OpenAI-compatible provider.
02 · CLI Agent
onefirewall-ai is a Python CLI that connects to your OneFirewall gateway or any OpenAI-compatible provider. Chat, stream and run agent workflows without leaving the shell.
03 · VS Code
Sign in once with a magic link, pick your workspace, and every AI request from your editor goes through the gateway.


04 · Mobile Apps
Native iOS and Android apps with the same engine, the same policies and the same models as the web gateway.
Why we exist
Intelligence Layer
The gateway injects precise context and high-performance tools into every conversation, ensuring real-time accuracy.
Current date, time and longitudinal context injected into every prompt.
Web search, weather and custom business APIs — no model configuration.
Per-user AI memory persists context across conversations and devices.
FAQ
An enterprise AI security gateway that sits between your team and public AI providers — preventing data leaks, redacting PII and enforcing privacy policies on every prompt, in real time.