Skip to main content

API Reference

The complete API reference is available as an interactive Scalar UI, served directly by the gateway.

Interactive Documentation

When the gateway is running, visit:

http://localhost:3000/docs

This provides:

  • Interactive request builder with authentication
  • All request/response schemas
  • Try-it-out functionality for every endpoint
  • OpenAPI 3.0 spec download

OpenAPI Spec

The raw OpenAPI 3.0 YAML spec is available at:

GET /docs/openapi.yaml

Endpoint Summary

Public (no auth)

MethodPathDescription
GET/healthHealth check
POST/api/auth/registerRegister new user
POST/api/auth/loginLogin

Authentication

MethodPathDescription
GET/api/auth/meGet current user
GET/api/auth/tokensList API tokens
POST/api/auth/tokensCreate API token
DELETE/api/auth/tokens/{id}Revoke API token

Users (admin)

MethodPathDescription
GET/api/usersList all users
PUT/api/users/{id}Update user
POST/api/users/{id}/recycleRecycle user's sessions

Sessions

MethodPathDescription
POST/api/sessions/recycleRecycle own sessions

Targets

MethodPathDescription
GET/api/targetsList targets
POST/api/targetsCreate target
GET/api/targets/{id}Get target
PUT/api/targets/{id}Update target
DELETE/api/targets/{id}Delete target
POST/api/targets/{id}/restart-instancesRestart K8s instances

Target Tokens

MethodPathDescription
GET/api/targets/{id}/tokensView all token config
GET/api/targets/{id}/tokenCheck own token
PUT/api/targets/{id}/tokenSet own token
DELETE/api/targets/{id}/tokenRemove own token
PUT/api/targets/{id}/tokens/roleSet role token
DELETE/api/targets/{id}/tokens/role/{role}Delete role token
PUT/api/targets/{id}/tokens/groupSet group token
DELETE/api/targets/{id}/tokens/group/{group}Delete group token
PUT/api/targets/{id}/tokens/defaultSet default token
DELETE/api/targets/{id}/tokens/defaultDelete default token

Authorization Policies

MethodPathDescription
GET/api/policiesList policies
POST/api/policiesCreate policy
GET/api/policies/{id}Get policy
PUT/api/policies/{id}Update policy
DELETE/api/policies/{id}Delete policy
POST/api/policies/{id}/subjectsAdd subject
DELETE/api/policies/{id}/subjects/{subjectId}Remove subject

Environment Config

MethodPathDescription
GET/api/targets/{id}/envList all env configs
GET/api/targets/{id}/env/resolveResolve for current user
GET/PUT/POST/api/targets/{id}/env/defaultDefault scope configs
DELETE/api/targets/{id}/env/default/{key}Delete default config
GET/PUT/POST/api/targets/{id}/env/role/{scopeValue}Role scope configs
DELETE/api/targets/{id}/env/role/{scopeValue}/{key}Delete role config
GET/PUT/POST/api/targets/{id}/env/group/{scopeValue}Group scope configs
DELETE/api/targets/{id}/env/group/{scopeValue}/{key}Delete group config
GET/PUT/POST/api/targets/{id}/env/user/{scopeValue}User scope configs
DELETE/api/targets/{id}/env/user/{scopeValue}/{key}Delete user config

Logs

MethodPathDescription
GET/api/logsList request audit logs

Observability

MethodPathDescription
GET/api/observability/wsWebSocket real-time dashboard
GET/api/observability/snapshotObservability snapshot

MCP Protocol

MethodPathDescription
POST/mcpSend JSON-RPC request
GET/mcpOpen SSE notification stream
DELETE/mcpClose MCP session