API Reference
All endpoints are prefixed with /api/v1/. Interactive API docs are available at /swagger on your running instance.
Authentication
All endpoints require authentication unless marked otherwise. Use either:
JWT Token — Authorization: Bearer eyJhbG... (from login/register)API Token — Authorization: Bearer sg_abc123... (from token creation)OIDC — redirect-based login via /api/v1/auth/oidc/login
Endpoints
Health
Method
Path
Auth
Description
GET/healthzNo
Health check
GET/swaggerNo
Interactive API docs
Authentication
Method
Path
Auth
Description
POST/api/v1/auth/registerNo
Register a new user (returns JWT)
POST/api/v1/auth/loginNo
Login (returns JWT)
GET/api/v1/auth/meYes
Current user info
GET/api/v1/auth/me/quotaYes
Current user tier limits and usage
PUT/api/v1/auth/preferencesYes
Update theme preference
POST/api/v1/auth/tokensYes
Create API token
GET/api/v1/auth/tokensYes
List API tokens
DELETE/api/v1/auth/tokens/{id}Yes
Revoke API token
SSO/OIDC
Method
Path
Auth
Description
GET/api/v1/auth/oidc/configNo
OIDC provider config (enabled, display name)
GET/api/v1/auth/oidc/loginNo
Initiate OIDC login flow
GET/api/v1/auth/oidc/callbackNo
OIDC callback (issues JWT, redirects to app)
Repositories
Method
Path
Auth
Description
GET/api/v1/repositoriesNo
List all repositories
POST/api/v1/repositoriesYes
Create repository
GET/api/v1/repositories/{slug}No
Get repository by slug
PUT/api/v1/repositories/{slug}Yes
Update repository (name, visibility, requiredApprovals)
DELETE/api/v1/repositories/{slug}Yes
Delete repository
Documents
Method
Path
Auth
Description
GET/api/v1/repositories/{slug}/documentsNo
List documents (file tree)
POST/api/v1/repositories/{slug}/documentsYes
Create document
GET/api/v1/repositories/{slug}/documents/{path}No
Get document with content
PUT/api/v1/repositories/{slug}/documents/{path}Yes
Update document (creates revision)
DELETE/api/v1/repositories/{slug}/documents/{path}Yes
Delete document
POST/api/v1/repositories/{slug}/documents/move/{path}Yes
Rename/move document
Revisions
Method
Path
Auth
Description
GET/api/v1/repositories/{slug}/revisions/{path}Yes
List revision history
GET/api/v1/repositories/{slug}/revisions/{docId}/{revId}Yes
Get specific revision
Proposals
Method
Path
Auth
Description
GET/api/v1/repositories/{slug}/proposalsNo
List proposals
POST/api/v1/repositories/{slug}/proposalsYes
Create proposal
GET/api/v1/repositories/{slug}/proposals/{id}No
Get proposal with diff
PUT/api/v1/repositories/{slug}/proposals/{id}Yes
Update draft proposal
POST/api/v1/repositories/{slug}/proposals/{id}/submitYes
Submit draft to open
POST/api/v1/repositories/{slug}/proposals/{id}/withdrawYes
Withdraw proposal
POST/api/v1/repositories/{slug}/proposals/{id}/approveReviewer+
Approve (auto-merges when threshold met)
POST/api/v1/repositories/{slug}/proposals/{id}/rejectReviewer+
Reject proposal
Reviews
Method
Path
Auth
Description
GET/api/v1/repositories/{slug}/proposals/{id}/reviewsNo
List reviews
POST/api/v1/repositories/{slug}/proposals/{id}/reviewsYes
Submit review
Method
Path
Auth
Description
GET/api/v1/repositories/{slug}/proposals/{id}/commentsNo
List comments
POST/api/v1/repositories/{slug}/proposals/{id}/commentsYes
Add comment (supports line references)
PUT/api/v1/repositories/{slug}/proposals/{id}/comments/{cid}Owner
Edit comment
DELETE/api/v1/repositories/{slug}/proposals/{id}/comments/{cid}Owner/Admin
Delete comment
Members
Method
Path
Auth
Description
GET/api/v1/repositories/{slug}/membersNo
List members
POST/api/v1/repositories/{slug}/membersAdmin
Add member
PUT/api/v1/repositories/{slug}/members/{userId}Admin
Update role
DELETE/api/v1/repositories/{slug}/members/{userId}Admin
Remove member
Method
Path
Auth
Description
POST/api/v1/repositories/{slug}/mediaYes
Upload media file (multipart)
GET/api/v1/repositories/{slug}/mediaNo
List media assets
GET/api/v1/repositories/{slug}/media/{id}No
Get media asset info
GET/api/v1/repositories/{slug}/media/{id}/downloadNo
Download media file
DELETE/api/v1/repositories/{slug}/media/{id}Owner/Admin
Delete media
Search
Method
Path
Auth
Description
GET/api/v1/search?q={query}&repo={slug}No
Full-text search across documents
Notifications
Method
Path
Auth
Description
GET/api/v1/notificationsYes
List notifications
POST/api/v1/notifications/{id}/readYes
Mark as read
POST/api/v1/notifications/read-allYes
Mark all as read
GET/api/v1/notifications/preferencesYes
Get notification preferences
PUT/api/v1/notifications/preferencesYes
Update notification preferences
Admin
Method
Path
Auth
Description
GET/api/v1/admin/settings/registrationNo
Registration status
GET/api/v1/admin/settingsAdmin
List all settings
PUT/api/v1/admin/settings/{key}Admin
Update setting
GET/api/v1/admin/auditAdmin
Audit event log
GET/api/v1/admin/audit/{id}Admin
Get audit event
PUT/api/v1/admin/users/{userId}/tierAdmin
Set user tier (free/paid)
Reports
Method
Path
Auth
Description
POST/api/v1/reportsYes
Report content (rate-limited)
GET/api/v1/reportsAdmin
List reports
GET/api/v1/reports/{id}Admin
Get report
PUT/api/v1/reports/{id}Admin
Resolve report
Error Responses
All errors follow a consistent structure:
{
"error" : {
"code" : "SLUG_ALREADY_EXISTS" ,
"message" : "A repository with slug 'my-handbook' already exists." ,
"details" : "Repository slugs must be unique. Try a different slug." ,
"field" : "slug"
}
}
Validation errors return all field errors at once:
{
"error" : {
"code" : "VALIDATION_FAILED" ,
"message" : "Request validation failed." ,
"errors" : [
{ "field" : "name" , "code" : "REQUIRED" , "message" : "Name is required." },
{ "field" : "slug" , "code" : "INVALID_FORMAT" , "message" : "Slug must be lowercase." }
]
}
}
Rate Limits
Scope
Limit
Applies to
Authentication
10 req / 15 min per IP
/api/v1/auth/*
Content creation
30 req / 15 min per user
Creating proposals, comments, documents
Reads
200 req / 1 min per IP
All GET endpoints
Reports
5 req / 1 hour per user
Content reporting