GlueOps/autoglue
1
0
Fork 0
mirror of https://github.com/GlueOps/autoglue.git synced 2026-02-13 12:50:05 +01:00
Code Issues Packages Projects Releases Wiki Activity

initial rebuild

Browse Source
This commit is contained in:
allanice001
2025-09-01 13:34:13 +01:00
commit 95bd9615d1
100 changed files with 12440 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

846
docs/docs.go Normal file
View File

@@ -0,0 +1,846 @@
// Package docs Code generated by swaggo/swag. DO NOT EDIT
package docs
import "github.com/swaggo/swag"
const docTemplate = `{
"schemes": {{ marshal .Schemes }},
"swagger": "2.0",
"info": {
"description": "{{escape .Description}}",
"title": "{{.Title}}",
"contact": {},
"version": "{{.Version}}"
},
"host": "{{.Host}}",
"basePath": "{{.BasePath}}",
"paths": {
"/api/healthz": {
"get": {
"description": "Returns a 200 if the service is up",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"health"
],
"summary": "Basic health check",
"responses": {
"200": {
"description": "ok",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/introspect": {
"post": {
"description": "Returns whether the token is active and basic metadata",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Introspect a token",
"parameters": [
{
"description": "token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"200": {
"description": "OK",
"schema": {
"type": "object",
"additionalProperties": true
}
}
}
}
},
"/api/v1/auth/login": {
"post": {
"description": "Authenticates a user and returns a JWT bearer token",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Authenticate and return a token",
"parameters": [
{
"description": "User login input",
"name": "body",
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/authn.LoginInput"
}
}
],
"responses": {
"200": {
"description": "token",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/logout": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Revoke a refresh token",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Logout user",
"parameters": [
{
"description": "refresh_token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/logout_all": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Revokes all active refresh tokens for the authenticated user",
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Logout from all sessions",
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/me": {
"get": {
"security": [
{
"BearerAuth": []
}
],
"description": "Returns the authenticated user's profile and auth context",
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Get authenticated user info",
"responses": {
"200": {
"description": "OK",
"schema": {
"$ref": "#/definitions/authn.MeResponse"
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/password/change": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Changes the password for the authenticated user",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Change password",
"parameters": [
{
"description": "current_password, new_password",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/password/forgot": {
"post": {
"description": "Sends a reset token to the user's email address",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Request password reset",
"parameters": [
{
"description": "email",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/password/reset": {
"post": {
"description": "Resets the password using a valid reset token",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Confirm password reset",
"parameters": [
{
"description": "token, new_password",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/refresh": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Use a refresh token to obtain a new access token",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Refresh access token",
"parameters": [
{
"description": "refresh_token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"200": {
"description": "new access token",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/refresh/rotate": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Exchanges a valid refresh token for a new access and refresh token, revoking the old one",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Rotate refresh token",
"parameters": [
{
"description": "refresh_token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"200": {
"description": "access_token, refresh_token",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/register": {
"post": {
"description": "Registers a new user and stores credentials",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Register a new user",
"parameters": [
{
"description": "User registration input",
"name": "body",
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/authn.RegisterInput"
}
}
],
"responses": {
"201": {
"description": "created",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/verify": {
"get": {
"description": "Verifies the user's email using a token (often from an emailed link)",
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Verify email address",
"parameters": [
{
"type": "string",
"description": "verification token",
"name": "token",
"in": "query",
"required": true
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/verify/resend": {
"post": {
"description": "Sends a new email verification token if needed",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Resend email verification",
"parameters": [
{
"description": "email",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/orgs": {
"get": {
"security": [
{
"BearerAuth": []
}
],
"produces": [
"application/json"
],
"tags": [
"organizations"
],
"summary": "List organizations for user",
"responses": {
"200": {
"description": "OK",
"schema": {
"type": "array",
"items": {
"$ref": "#/definitions/models.Organization"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
},
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Creates a new organization and assigns the authenticated user as an admin member",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"organizations"
],
"summary": "Create a new organization",
"parameters": [
{
"type": "string",
"description": "Optional organization context (ignored for creation)",
"name": "X-Org-ID",
"in": "header"
},
{
"description": "Organization Input",
"name": "body",
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/orgs.OrgInput"
}
}
],
"responses": {
"200": {
"description": "organization_id",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"400": {
"description": "invalid input",
"schema": {
"type": "string"
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
},
"500": {
"description": "internal error",
"schema": {
"type": "string"
}
}
}
}
}
},
"definitions": {
"authn.AuthClaimsDTO": {
"type": "object",
"properties": {
"aud": {
"type": "array",
"items": {
"type": "string"
}
},
"exp": {
"type": "integer"
},
"iat": {
"type": "integer"
},
"iss": {
"type": "string"
},
"nbf": {
"type": "integer"
},
"orgs": {
"type": "array",
"items": {
"type": "string"
}
},
"roles": {
"type": "array",
"items": {
"type": "string"
}
},
"sub": {
"type": "string"
}
}
},
"authn.LoginInput": {
"type": "object",
"properties": {
"email": {
"type": "string",
"example": "me@here.com"
},
"password": {
"type": "string",
"example": "123456"
}
}
},
"authn.MeResponse": {
"type": "object",
"properties": {
"claims": {
"$ref": "#/definitions/authn.AuthClaimsDTO"
},
"org_role": {
"type": "string"
},
"organization_id": {
"type": "string"
},
"user_id": {
"$ref": "#/definitions/authn.UserDTO"
}
}
},
"authn.RegisterInput": {
"type": "object",
"properties": {
"email": {
"type": "string",
"example": "me@here.com"
},
"name": {
"type": "string",
"example": "My Name"
},
"password": {
"type": "string",
"example": "123456"
}
}
},
"authn.UserDTO": {
"type": "object",
"properties": {
"created_at": {
"type": "string"
},
"email": {
"type": "string"
},
"email_verified": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"role": {
"$ref": "#/definitions/models.Role"
},
"updated_at": {
"type": "string"
}
}
},
"models.Organization": {
"type": "object",
"properties": {
"created_at": {
"type": "string"
},
"id": {
"type": "string"
},
"logo": {
"type": "string"
},
"metadata": {
"type": "string"
},
"name": {
"type": "string"
},
"slug": {
"type": "string"
},
"updated_at": {
"type": "string"
}
}
},
"models.Role": {
"type": "string",
"enum": [
"admin",
"user"
],
"x-enum-varnames": [
"RoleAdmin",
"RoleUser"
]
},
"orgs.OrgInput": {
"type": "object",
"properties": {
"name": {
"type": "string"
},
"slug": {
"type": "string"
}
}
}
},
"securityDefinitions": {
"BearerAuth": {
"type": "apiKey",
"name": "Authorization",
"in": "header"
}
}
}`
// SwaggerInfo holds exported Swagger Info so clients can modify it
var SwaggerInfo = &swag.Spec{
Version: "1.0",
Host: "",
BasePath: "/",
Schemes: []string{"http"},
Title: "AutoGlue API",
Description: "API for managing K3s clusters across cloud providers",
InfoInstanceName: "swagger",
SwaggerTemplate: docTemplate,
LeftDelim: "{{",
RightDelim: "}}",
}
func init() {
swag.Register(SwaggerInfo.InstanceName(), SwaggerInfo)
}

9
docs/efs.go Normal file
View File

@@ -0,0 +1,9 @@
package docs
import _ "embed"
//go:embed swagger.json
var SwaggerJSON []byte
//go:embed swagger.yaml
var SwaggerYAML []byte

824
docs/swagger.json Normal file
View File

@@ -0,0 +1,824 @@
{
"schemes": [
"http"
],
"swagger": "2.0",
"info": {
"description": "API for managing K3s clusters across cloud providers",
"title": "AutoGlue API",
"contact": {},
"version": "1.0"
},
"basePath": "/",
"paths": {
"/api/healthz": {
"get": {
"description": "Returns a 200 if the service is up",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"health"
],
"summary": "Basic health check",
"responses": {
"200": {
"description": "ok",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/introspect": {
"post": {
"description": "Returns whether the token is active and basic metadata",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Introspect a token",
"parameters": [
{
"description": "token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"200": {
"description": "OK",
"schema": {
"type": "object",
"additionalProperties": true
}
}
}
}
},
"/api/v1/auth/login": {
"post": {
"description": "Authenticates a user and returns a JWT bearer token",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Authenticate and return a token",
"parameters": [
{
"description": "User login input",
"name": "body",
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/authn.LoginInput"
}
}
],
"responses": {
"200": {
"description": "token",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/logout": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Revoke a refresh token",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Logout user",
"parameters": [
{
"description": "refresh_token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/logout_all": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Revokes all active refresh tokens for the authenticated user",
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Logout from all sessions",
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/me": {
"get": {
"security": [
{
"BearerAuth": []
}
],
"description": "Returns the authenticated user's profile and auth context",
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Get authenticated user info",
"responses": {
"200": {
"description": "OK",
"schema": {
"$ref": "#/definitions/authn.MeResponse"
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/password/change": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Changes the password for the authenticated user",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Change password",
"parameters": [
{
"description": "current_password, new_password",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/password/forgot": {
"post": {
"description": "Sends a reset token to the user's email address",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Request password reset",
"parameters": [
{
"description": "email",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/password/reset": {
"post": {
"description": "Resets the password using a valid reset token",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Confirm password reset",
"parameters": [
{
"description": "token, new_password",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/refresh": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Use a refresh token to obtain a new access token",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Refresh access token",
"parameters": [
{
"description": "refresh_token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"200": {
"description": "new access token",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/refresh/rotate": {
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Exchanges a valid refresh token for a new access and refresh token, revoking the old one",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Rotate refresh token",
"parameters": [
{
"description": "refresh_token",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"200": {
"description": "access_token, refresh_token",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/register": {
"post": {
"description": "Registers a new user and stores credentials",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"auth"
],
"summary": "Register a new user",
"parameters": [
{
"description": "User registration input",
"name": "body",
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/authn.RegisterInput"
}
}
],
"responses": {
"201": {
"description": "created",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/verify": {
"get": {
"description": "Verifies the user's email using a token (often from an emailed link)",
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Verify email address",
"parameters": [
{
"type": "string",
"description": "verification token",
"name": "token",
"in": "query",
"required": true
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
},
"400": {
"description": "bad request",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/auth/verify/resend": {
"post": {
"description": "Sends a new email verification token if needed",
"consumes": [
"application/json"
],
"produces": [
"text/plain"
],
"tags": [
"auth"
],
"summary": "Resend email verification",
"parameters": [
{
"description": "email",
"name": "body",
"in": "body",
"required": true,
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
],
"responses": {
"204": {
"description": "no content",
"schema": {
"type": "string"
}
}
}
}
},
"/api/v1/orgs": {
"get": {
"security": [
{
"BearerAuth": []
}
],
"produces": [
"application/json"
],
"tags": [
"organizations"
],
"summary": "List organizations for user",
"responses": {
"200": {
"description": "OK",
"schema": {
"type": "array",
"items": {
"$ref": "#/definitions/models.Organization"
}
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
}
}
},
"post": {
"security": [
{
"BearerAuth": []
}
],
"description": "Creates a new organization and assigns the authenticated user as an admin member",
"consumes": [
"application/json"
],
"produces": [
"application/json"
],
"tags": [
"organizations"
],
"summary": "Create a new organization",
"parameters": [
{
"type": "string",
"description": "Optional organization context (ignored for creation)",
"name": "X-Org-ID",
"in": "header"
},
{
"description": "Organization Input",
"name": "body",
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/orgs.OrgInput"
}
}
],
"responses": {
"200": {
"description": "organization_id",
"schema": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
},
"400": {
"description": "invalid input",
"schema": {
"type": "string"
}
},
"401": {
"description": "unauthorized",
"schema": {
"type": "string"
}
},
"500": {
"description": "internal error",
"schema": {
"type": "string"
}
}
}
}
}
},
"definitions": {
"authn.AuthClaimsDTO": {
"type": "object",
"properties": {
"aud": {
"type": "array",
"items": {
"type": "string"
}
},
"exp": {
"type": "integer"
},
"iat": {
"type": "integer"
},
"iss": {
"type": "string"
},
"nbf": {
"type": "integer"
},
"orgs": {
"type": "array",
"items": {
"type": "string"
}
},
"roles": {
"type": "array",
"items": {
"type": "string"
}
},
"sub": {
"type": "string"
}
}
},
"authn.LoginInput": {
"type": "object",
"properties": {
"email": {
"type": "string",
"example": "me@here.com"
},
"password": {
"type": "string",
"example": "123456"
}
}
},
"authn.MeResponse": {
"type": "object",
"properties": {
"claims": {
"$ref": "#/definitions/authn.AuthClaimsDTO"
},
"org_role": {
"type": "string"
},
"organization_id": {
"type": "string"
},
"user_id": {
"$ref": "#/definitions/authn.UserDTO"
}
}
},
"authn.RegisterInput": {
"type": "object",
"properties": {
"email": {
"type": "string",
"example": "me@here.com"
},
"name": {
"type": "string",
"example": "My Name"
},
"password": {
"type": "string",
"example": "123456"
}
}
},
"authn.UserDTO": {
"type": "object",
"properties": {
"created_at": {
"type": "string"
},
"email": {
"type": "string"
},
"email_verified": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"role": {
"$ref": "#/definitions/models.Role"
},
"updated_at": {
"type": "string"
}
}
},
"models.Organization": {
"type": "object",
"properties": {
"created_at": {
"type": "string"
},
"id": {
"type": "string"
},
"logo": {
"type": "string"
},
"metadata": {
"type": "string"
},
"name": {
"type": "string"
},
"slug": {
"type": "string"
},
"updated_at": {
"type": "string"
}
}
},
"models.Role": {
"type": "string",
"enum": [
"admin",
"user"
],
"x-enum-varnames": [
"RoleAdmin",
"RoleUser"
]
},
"orgs.OrgInput": {
"type": "object",
"properties": {
"name": {
"type": "string"
},
"slug": {
"type": "string"
}
}
}
},
"securityDefinitions": {
"BearerAuth": {
"type": "apiKey",
"name": "Authorization",
"in": "header"
}
}
}

533
docs/swagger.yaml Normal file
View File

@@ -0,0 +1,533 @@
basePath: /
definitions:
authn.AuthClaimsDTO:
properties:
aud:
items:
type: string
type: array
exp:
type: integer
iat:
type: integer
iss:
type: string
nbf:
type: integer
orgs:
items:
type: string
type: array
roles:
items:
type: string
type: array
sub:
type: string
type: object
authn.LoginInput:
properties:
email:
example: me@here.com
type: string
password:
example: "123456"
type: string
type: object
authn.MeResponse:
properties:
claims:
$ref: '#/definitions/authn.AuthClaimsDTO'
org_role:
type: string
organization_id:
type: string
user_id:
$ref: '#/definitions/authn.UserDTO'
type: object
authn.RegisterInput:
properties:
email:
example: me@here.com
type: string
name:
example: My Name
type: string
password:
example: "123456"
type: string
type: object
authn.UserDTO:
properties:
created_at:
type: string
email:
type: string
email_verified:
type: boolean
id:
type: string
name:
type: string
role:
$ref: '#/definitions/models.Role'
updated_at:
type: string
type: object
models.Organization:
properties:
created_at:
type: string
id:
type: string
logo:
type: string
metadata:
type: string
name:
type: string
slug:
type: string
updated_at:
type: string
type: object
models.Role:
enum:
- admin
- user
type: string
x-enum-varnames:
- RoleAdmin
- RoleUser
orgs.OrgInput:
properties:
name:
type: string
slug:
type: string
type: object
info:
contact: {}
description: API for managing K3s clusters across cloud providers
title: AutoGlue API
version: "1.0"
paths:
/api/healthz:
get:
consumes:
- application/json
description: Returns a 200 if the service is up
produces:
- text/plain
responses:
"200":
description: ok
schema:
type: string
summary: Basic health check
tags:
- health
/api/v1/auth/introspect:
post:
consumes:
- application/json
description: Returns whether the token is active and basic metadata
parameters:
- description: token
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- application/json
responses:
"200":
description: OK
schema:
additionalProperties: true
type: object
summary: Introspect a token
tags:
- auth
/api/v1/auth/login:
post:
consumes:
- application/json
description: Authenticates a user and returns a JWT bearer token
parameters:
- description: User login input
in: body
name: body
required: true
schema:
$ref: '#/definitions/authn.LoginInput'
produces:
- application/json
responses:
"200":
description: token
schema:
additionalProperties:
type: string
type: object
"401":
description: unauthorized
schema:
type: string
summary: Authenticate and return a token
tags:
- auth
/api/v1/auth/logout:
post:
consumes:
- application/json
description: Revoke a refresh token
parameters:
- description: refresh_token
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- application/json
responses:
"204":
description: no content
schema:
type: string
security:
- BearerAuth: []
summary: Logout user
tags:
- auth
/api/v1/auth/logout_all:
post:
description: Revokes all active refresh tokens for the authenticated user
produces:
- text/plain
responses:
"204":
description: no content
schema:
type: string
security:
- BearerAuth: []
summary: Logout from all sessions
tags:
- auth
/api/v1/auth/me:
get:
description: Returns the authenticated user's profile and auth context
produces:
- application/json
responses:
"200":
description: OK
schema:
$ref: '#/definitions/authn.MeResponse'
"401":
description: unauthorized
schema:
type: string
security:
- BearerAuth: []
summary: Get authenticated user info
tags:
- auth
/api/v1/auth/password/change:
post:
consumes:
- application/json
description: Changes the password for the authenticated user
parameters:
- description: current_password, new_password
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- text/plain
responses:
"204":
description: no content
schema:
type: string
"400":
description: bad request
schema:
type: string
security:
- BearerAuth: []
summary: Change password
tags:
- auth
/api/v1/auth/password/forgot:
post:
consumes:
- application/json
description: Sends a reset token to the user's email address
parameters:
- description: email
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- text/plain
responses:
"204":
description: no content
schema:
type: string
summary: Request password reset
tags:
- auth
/api/v1/auth/password/reset:
post:
consumes:
- application/json
description: Resets the password using a valid reset token
parameters:
- description: token, new_password
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- text/plain
responses:
"204":
description: no content
schema:
type: string
"400":
description: bad request
schema:
type: string
summary: Confirm password reset
tags:
- auth
/api/v1/auth/refresh:
post:
consumes:
- application/json
description: Use a refresh token to obtain a new access token
parameters:
- description: refresh_token
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- application/json
responses:
"200":
description: new access token
schema:
additionalProperties:
type: string
type: object
"401":
description: unauthorized
schema:
type: string
security:
- BearerAuth: []
summary: Refresh access token
tags:
- auth
/api/v1/auth/refresh/rotate:
post:
consumes:
- application/json
description: Exchanges a valid refresh token for a new access and refresh token,
revoking the old one
parameters:
- description: refresh_token
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- application/json
responses:
"200":
description: access_token, refresh_token
schema:
additionalProperties:
type: string
type: object
"401":
description: unauthorized
schema:
type: string
security:
- BearerAuth: []
summary: Rotate refresh token
tags:
- auth
/api/v1/auth/register:
post:
consumes:
- application/json
description: Registers a new user and stores credentials
parameters:
- description: User registration input
in: body
name: body
required: true
schema:
$ref: '#/definitions/authn.RegisterInput'
produces:
- application/json
responses:
"201":
description: created
schema:
type: string
"400":
description: bad request
schema:
type: string
summary: Register a new user
tags:
- auth
/api/v1/auth/verify:
get:
description: Verifies the user's email using a token (often from an emailed
link)
parameters:
- description: verification token
in: query
name: token
required: true
type: string
produces:
- text/plain
responses:
"204":
description: no content
schema:
type: string
"400":
description: bad request
schema:
type: string
summary: Verify email address
tags:
- auth
/api/v1/auth/verify/resend:
post:
consumes:
- application/json
description: Sends a new email verification token if needed
parameters:
- description: email
in: body
name: body
required: true
schema:
additionalProperties:
type: string
type: object
produces:
- text/plain
responses:
"204":
description: no content
schema:
type: string
summary: Resend email verification
tags:
- auth
/api/v1/orgs:
get:
produces:
- application/json
responses:
"200":
description: OK
schema:
items:
$ref: '#/definitions/models.Organization'
type: array
"401":
description: unauthorized
schema:
type: string
security:
- BearerAuth: []
summary: List organizations for user
tags:
- organizations
post:
consumes:
- application/json
description: Creates a new organization and assigns the authenticated user as
an admin member
parameters:
- description: Optional organization context (ignored for creation)
in: header
name: X-Org-ID
type: string
- description: Organization Input
in: body
name: body
required: true
schema:
$ref: '#/definitions/orgs.OrgInput'
produces:
- application/json
responses:
"200":
description: organization_id
schema:
additionalProperties:
type: string
type: object
"400":
description: invalid input
schema:
type: string
"401":
description: unauthorized
schema:
type: string
"500":
description: internal error
schema:
type: string
security:
- BearerAuth: []
summary: Create a new organization
tags:
- organizations
schemes:
- http
securityDefinitions:
BearerAuth:
in: header
name: Authorization
type: apiKey
swagger: "2.0"