One platform. Four layers.
Every app shares it.
A no-code integration platform. Connect, map, orchestrate, and monitor without writing custom code. The same AI engine, integration backbone, and JWT-scoped security powers BPI, MFT, AI-OCR, and Vault — build once, govern once.
Error transactions
Active flows
Active mappings
Show failed transactions from the last hour and link me to each one.
Recent mappings
CUS_Walmart_850_X12_TO_IDoc
X12 → IDoc
ACME_855_ACK_TO_JSON
X12 → JSON
No-code by design
Build without code
Connect, map, orchestrate, and monitor on one platform — without custom scripts or specialist-heavy projects.
Visual process flows
Design integrations in Orbit BPI without writing scripts.
Pre-built connectors
SAP, Salesforce, NetSuite, Oracle, and 44+ more — no custom adapters.
MAPR AI mapping
Describe intent in plain English. AI builds and validates mapping rules before go-live.
AI agents
AgentCosmos assistants for monitoring, scheduling, and document intelligence.
MAPR AI is what no-code mapping actually looks like — complete rules, dry-run verified, reviewer-approved.
Architecture
A layered platform, by design.
Four horizontal layers. Each one earns the layer above it. AI shouldn't be glued on top — it should run through every flow, every parse, every mapping. So that's how Orbit is built.
Orbit platform layers
Applications
Orbit BPI · SecureFlow MFT · Orbit OCR · Edge API Gateway
AI engine
AgentCosmos · MAPR AI · document intelligence
Integration
Connectors · mappings · process flows · TPM
Security & identity
JWT tenancy · RBAC · audit · SOC 2 Type II
Applications
Four independent apps that run on the same Orbit backbone — subscribe to one or combine into a full suite.
AI Engine
Real, named AI surfaces that ship inside the platform — not a buzzword roster.
Integration
Every format we parse, every protocol we speak, every flow we run — same engine.
Security & Identity
JWT-scoped, tenant-isolated, RBAC-governed, audit-logged — from day one.
AI surfaces
Real AI. Named. Shipped.
Other platforms list "AI-powered" as a bullet. Orbit ships six specific AI surfaces that have names, jobs, and real impact in production today — built on the Vercel AI SDK with Claude / GPT-4 / Gemini, depending on the workload.
MAPR AI is what no-code mapping actually looks like — complete rules, dry-run verified, reviewer-approved.
MAPR AI
Hand it two sample payloads. It parses both schemas, proposes a complete rule set, dry-runs it, repairs failures, and applies a live mapping in your IDE. 80 hours of work in 8 minutes.
JSONata Assistant
Describe the transformation in English. The assistant returns valid JSONata you can paste into a rule — fallbacks, qualifiers, conditionals, all of it.
AI-OCR Engine
Upload a document, chat to refine the extraction schema, save it as a message type. Runs at flow time so production PDFs become structured data with the same shape every run.
Doc Insights
Renders raw X12 / EDIFACT / IDoc as a clean, business-readable card stack. Buyers, finance, ops can read a transaction without reading EDI.
Dashboard Agent
Every BPI dashboard surface has an Orbit-grounded assistant: "how many failed transactions today", "recent executions for ACME", "connection health" — answered against the live tenant data.
Cron Assistant
Describe a schedule ("every weekday at 9am EST"). Get a valid cron expression with timezone. No more cron-tab Googling.
Security model
Multi-tenant from day one.
No "we'll harden it for enterprise" promises. The platform is tenant-scoped at the JWT level, RBAC-governed per-app, and audit-logged on every action. From the first request.
JWT-scoped multi-tenant isolation
Tenant A
ops@acme.com
tenant_id: acme
Identity gateway
JWT validated · tenant routed
Tenant B
edi@northwind.com
tenant_id: northwind
Each tenant sees only their partners, transfers, and audit data — no cross-tenant access.
Tenant ID from the JWT, never from a header
Every request's tenant scope comes from a validated JWT claim. Headers can't escalate. The same rule applies to every Java backend (BPI / MFT / TPM) and the Bun runtime.
RBAC per app, with profile-level bundling
Roles bundle permissions. Profiles bundle roles, scoped to specific apps. Users get profiles, never raw permissions. The UI is gated by
Audit log on every action
Every meaningful action — login, role change, mapping activation, share link create, partner edit — lands in an audit_log table with actor, tenant, request ID, and outcome. Exportable, queryable, retained.
Integration backbone
Every format. Every protocol. One backbone.
X12, EDIFACT, IDoc, XML, CSV, JSON for data. AS2, SFTP, FTP/FTPS, OFTP2, REST, JDBC for transport. Plus 44 pre-built connectors to SAP, Oracle, NetSuite, Salesforce, Shopify, Amazon, and the long tail of trading partners.
Every format we support
Every protocol we speak
Powering enterprise integrations worldwide




































See the platform.
Then run it.
Book a 30-minute walkthrough of the architecture, the AI surfaces, and the security model — with an engineer, not a salesperson.