Security
API Reference

Current Platform Contracts

The API surface is intentionally compact in MVP form: flows, executions, and mail delivery, with session access now and token auth planned later.

Base URL

https://api.iai.one

Auth

Current

Session-based access is the active model for the current platform phase.

Future

Token-based auth will be added as the dedicated identity and SDK layers mature.

Flow Endpoints

POST/flows

GET/flows

GET/flows/:id

{
  "name": "Lead qualification",
  "nodes": [],
  "edges": []
}

Execution Endpoints

POST/executions

GET/executions/:id

{
  "flowId": "flow_123",
  "input": {
    "email": "user@example.com"
  }
}

Mail Endpoints

POST/mail/send

{
  "to": "ops@example.com",
  "subject": "Runtime alert",
  "body": "Execution 123 failed on node transform-1."
}

Response Format

{
  "ok": true,
  "data": {}
}
Recommended next step

Add a standardized error envelope as the auth layer, SDK, and UI error handling mature. That is one of the remaining platform gaps.