DEFLECTIQ API - Documentation

Authentication

The API uses JWT authentication. Include the token in the Authorization: Bearer <token> header.

POST /api/v1/auth/login
User authentication (returns JWT + refresh token)

POST /api/v1/auth/register
User registration

POST /api/v1/auth/refresh
Refresh access token

GET /api/v1/auth/me
Get current user profile

Domains

GET /api/v1/domains
List all domains for the current organization

POST /api/v1/domains
Create a new domain

GET /api/v1/domains/{id}
Get domain details

PUT /api/v1/domains/{id}
Update domain configuration

GET /api/v1/domains/{id}/waf
Get WAF configuration for a domain

PUT /api/v1/domains/{id}/waf
Update WAF configuration

Agents

GET /api/v1/agents
List all agents

GET /api/v1/agents/{id}
Get agent details

PUT /api/v1/agents/{id}/config
Update agent configuration

POST /api/v1/agents/deploy
Deploy an agent to a remote server via SSH

DELETE /api/v1/agents/{id}
Remove an agent

Metrics

GET /api/v1/metrics
Get aggregated metrics

GET /api/v1/metrics/current
Get current real-time metrics

GET /api/v1/metrics/by-domain
Get metrics grouped by domain

Attacks

GET /api/v1/attacks
List attack events

POST /api/v1/attacks/{id}/resolve
Resolve an attack

WebSocket

WS /ws/
General real-time event stream (domain updates, deployments, alerts)

WS /ws/metrics
Real-time metrics stream

WS /ws/alerts
Real-time attack alerts stream

Monitoring

GET /health
Service health check (JSON)

GET /metrics
Prometheus metrics (text/plain)

Note: This is a summary of the most common endpoints. Additional routes exist for billing, SSL, deployments, organizations, rules, and logs. A full OpenAPI specification will replace this page in a future release.