By name: notion description: Read and write Notion pages and databases using the Notion API compatibility: "Designed for Vellum personal assistants" metadata: icon: assets/icon.svg emoji: "📝" vellum: category: "productivity" display-name: "Notion" activation-hints: - "User asks to read, find, search, or open a page, doc, database, or directory in their Notion (e.g. 'find it in notion', 'look in my Notion', 'this is a notion directory')" - "User references Notion content by name or path and wants its contents pulled" - "User wants to create, update, append to, or query Notion pages or databases" - "User asks anything that requires reading or writing Notion data, including checking a task list or workspace held in Notion" avoid-when: - "User wants to set up, connect, or reconnect the Notion OAuth integration for the first time; load vellum-oauth-integrations instead"
You have access to the Notion API via the managed OAuth connection or an internal integration secret stored in the credential vault. Both paths inject the Authorization header automatically. Never reveal credential values or echo token values into the shell.
Authentication
Step 1 - Determine connection type:
assistant credentials list
Look at the results to decide which path to use:
- Managed OAuth (preferred): No
service: "notion"entry is needed in the vault. The OAuth connection is managed by the platform. Use Path A below. - Internal integration secret: An entry with
service: "notion"andfield: "internal_secret"is present. Use Path A below (recommended) or Path B if the credential has the required metadata (see Path B for details). - Neither configured: Tell the user: "Notion is not connected yet. Load the vellum-oauth-integrations skill to set it up first."
Step 2 - Make authenticated API calls:
Choose the path that matches what you found in Step 1.
Path A. Managed OAuth (preferred)
Use assistant oauth request --provider notion. The Authorization header is injected automatically; do not supply it manually.
assistant oauth request --provider notion \
-X POST \
-H "Notion-Version: 2022-06-28" \
-H "Content-Type: application/json" \
-d '{}' \
https://api.notion.com/v1/search
General shape: assistant oauth request --provider notion -X <METHOD> -H "Notion-Version: 2022-06-28" [-H "Content-Type: application/json"] [-d '<json-body>'] <url>
- URL can be absolute (
https://api.notion.com/v1/pages/...) or relative (/v1/pages/...). -daccepts inline JSON,@filename, or@-for stdin.- Token refresh is handled automatically.
Path B. Proxied bash with credential auto-injection
Note: The standard Notion setup flow (
vellum-oauth-integrations) does not currently produce credentials with the metadata required by this path. Most users should use Path A instead. Path B is documented for credentials that have been manually configured with the required metadata.
For internal integration secrets registered with allowedTools: ["bash"] and an injection_templates entry for api.notion.com. The proxy adds Authorization: Bearer <token> automatically. Do not include an Authorization header in the curl command.
bash:
network_mode: proxied
credential_ids: ["<credential_id_from_step_1>"]
command: |
curl -s -X POST https://api.notion.com/v1/search \
-H "Notion-Version: 2022-06-28" \
-H "Content-Type: application/json" \
-d '{}'
Where <credential_id_from_step_1> is the id field from the matching entry in assistant credentials list output.
The credential MUST have:
allowedToolsincluding"bash"(otherwise the proxy blocks the call).injection_templateswith host patternapi.notion.comand header injection type forAuthorization.
If these are missing, you will get a credential tool policy denied error. Switch to Path A instead.
All Notion API calls go to https://api.notion.com/v1/. Always include the Notion-Version: 2022-06-28 header.
Reading Pages
Get a page by ID
GET https://api.notion.com/v1/pages/{page_id}
Returns page properties. Use the page ID from a Notion URL - the last segment of the URL, e.g. for https://notion.so/My-Page-abc123def456 the ID is abc123def456 (formatted as UUID: abc123de-f456-...).
Get page content (blocks)
GET https://api.notion.com/v1/blocks/{block_id}/children?page_size=100
Pages are blocks too - use the page ID as the block_id. Iterates through the page's child blocks. Use start_cursor for pagination when has_more is true.
Block types and how to render them:
paragraph: Readparagraph.rich_text[].plain_textheading_1,heading_2,heading_3: Readheading_N.rich_text[].plain_textbulleted_list_item,numbered_list_item: Read*.rich_text[].plain_textto_do: Readto_do.rich_text[].plain_textandto_do.checkedtoggle: Readtoggle.rich_text[].plain_text; children are nested blockscode: Readcode.rich_text[].plain_textandcode.languagequote: Readquote.rich_text[].plain_textcallout: Readcallout.rich_text[].plain_textdivider: Render as---image: Readimage.external.urlorimage.file.urlchild_page: Readchild_page.title; use itsidto recursively fetch if needed
Searching
Search pages and databases
POST https://api.notion.com/v1/search
{
"query": "your search term",
"filter": { "value": "page", "property": "object" },
"sort": { "direction": "descending", "timestamp": "last_edited_time" },
"page_size": 10
}
Omit filter to search both pages and databases. Use filter.value: "database" to search only databases.
Returns results[] with id, url, properties.title (for pages), and title[] (for databases).
Reading Databases
Get database metadata
GET https://api.notion.com/v1/databases/{database_id}
Returns the database schema (all property definitions).
Query a database
POST https://api.notion.com/v1/databases/{database_id}/query
{
"filter": {
"property": "Status",
"select": { "equals": "In Progress" }
},
"sorts": [
{ "property": "Created", "direction": "descending" }
],
"page_size": 20
}
Omit filter to retrieve all rows. Returns results[] where each item is a page (database row).
Extracting property values from database rows:
title:properties.Name.title[].plain_textrich_text:properties.Notes.rich_text[].plain_textnumber:properties.Price.numberselect:properties.Status.select.namemulti_select:properties.Tags.multi_select[].namedate:properties.Due.date.start(ISO 8601)checkbox:properties.Done.checkboxurl:properties.Link.urlemail:properties.Email.emailpeople:properties.Owner.people[].namerelation:properties.Projects.relation[].id(array of page IDs)
Creating Pages
Create a new page
POST https://api.notion.com/v1/pages
{
"parent": { "page_id": "<parent_page_id>" },
"properties": {
"title": {
"title": [{ "text": { "content": "My New Page" } }]
}
},
"children": [
{
"object": "block",
"type": "paragraph",
"paragraph": {
"rich_text": [{ "text": { "content": "Page content here." } }]
}
}
]
}
For database rows, use "parent": { "database_id": "<database_id>" } and include the database's required properties.
Updating Pages
Update page properties
PATCH https://api.notion.com/v1/pages/{page_id}
{
"properties": {
"Status": { "select": { "name": "Done" } },
"Due": { "date": { "start": "2024-12-31" } }
}
}
Append blocks to a page
PATCH https://api.notion.com/v1/blocks/{block_id}/children
{
"children": [
{
"object": "block",
"type": "paragraph",
"paragraph": {
"rich_text": [{ "text": { "content": "Appended content." } }]
}
},
{
"object": "block",
"type": "heading_2",
"heading_2": {
"rich_text": [{ "text": { "content": "A heading" } }]
}
},
{
"object": "block",
"type": "bulleted_list_item",
"bulleted_list_item": {
"rich_text": [{ "text": { "content": "A bullet point" } }]
}
},
{
"object": "block",
"type": "to_do",
"to_do": {
"rich_text": [{ "text": { "content": "A task" } }],
"checked": false
}
}
]
}
Update a block's content
PATCH https://api.notion.com/v1/blocks/{block_id}
{
"paragraph": {
"rich_text": [{ "text": { "content": "Updated text." } }]
}
}
Delete (archive) a block
DELETE https://api.notion.com/v1/blocks/{block_id}
Archive / Delete Pages
Notion does not permanently delete pages via the API - it archives them:
PATCH https://api.notion.com/v1/pages/{page_id}
{
"archived": true
}
Pagination
When a response includes "has_more": true, pass "start_cursor": response.next_cursor in the next request to get the next page of results.
Error Handling
- 401 Unauthorized: The token is missing, invalid, or expired. For Internal integrations, ask the user to re-run the vellum-oauth-integrations skill. For OAuth connections, the access token may need to be refreshed or re-authorized.
- 403 Forbidden: The integration doesn't have access to the requested page or database. Remind the user that they need to share the page/database with the "Vellum Assistant" integration in Notion (via the Share menu → "Add connections").
- 404 Not Found: The page or database ID doesn't exist or the integration can't see it. Verify the ID and check sharing settings.
- 400 Bad Request: Check the request body structure. The Notion API error response includes a
messagefield with details. - 429 Too Many Requests: Wait a few seconds and retry.
credential tool policy denied: The credential is missingbashinallowedToolsor aninjection_templatesentry forapi.notion.com, so the proxy cannot inject the Authorization header. Switch to Path A (managed OAuth), which bypasses credential metadata requirements entirely.
Tips
- Notion page IDs in URLs are formatted without hyphens. The API accepts both forms:
abc123def456...orabc123de-f456-.... - When extracting IDs from Notion URLs, strip any query parameters and trailing path components after the 32-character ID segment.
- Always include
Notion-Version: 2022-06-28header to get stable API behavior. - For rich text, concatenate all
plain_textvalues in the array to get the full text content. - When creating content with rich text formatting (bold, italic, links), use the
annotationsandhreffields in rich_text objects.