Skip to content

docs: add Phase-5 paths to openapi spec #41

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
btwshivam merged 1 commit into from
May 28, 2026
Merged

docs: add Phase-5 paths to openapi spec #41

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
62 changes: 62 additions & 0 deletions docs/api/openapi.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -244,6 +244,68 @@ paths:
"401": { description: agent identity not verified }
"413": { description: body exceeds 16 MiB cap }

/v1/agent/snapshot:
post:
tags: [ingest]
summary: Agent → SaaS rich cluster snapshot (Phase 5).
description: |
Authenticated by the agent's mTLS client cert (SPIFFE URI SAN of
the form `spiffe://optiqor.dev/tenant/<uuid>`) PLUS a 15-min HS256
JWT in the `X-Optiqor-Agent-Token` header. The JWT proves
recency — a leaked cert pair has bounded blast radius. Body
carries K8s inventory + Prom samples + service graph +
provisioner detection in one round-trip.
requestBody:
required: true
content:
application/json:
schema: { type: object, additionalProperties: true }
responses:
"202": { description: snapshot accepted; echoes batch_id + obs counts }
"400": { description: malformed snapshot or cluster mismatch }
"401": { description: mTLS or token verification failed }
"413": { description: body exceeds 16 MiB cap }

/v1/agent/health:
get:
tags: [dashboard]
summary: Agent status + last check-in (Phase 5).
description: |
Tenant-scoped. Reads the freshest row from the agents table and
projects status (healthy / degraded / offline), last check-in
timestamp, and data freshness window.
security:
- tenantHeader: []
- bearerAuth: []
- sessionCookie: []
responses:
"200":
description: agent health envelope
content:
application/json:
schema: { type: object, additionalProperties: true }
"401": { description: tenant context missing }

/v1/savings/summary:
get:
tags: [dashboard]
summary: Lifetime / MTD / YTD savings (Phase 5).
description: |
Tenant-scoped. Sums monthly_usd_cents from merged apply_fixes
per period. Cents are returned to stay precision-stable across
JSON rounds.
security:
- tenantHeader: []
- bearerAuth: []
- sessionCookie: []
responses:
"200":
description: savings summary envelope
content:
application/json:
schema: { type: object, additionalProperties: true }
"401": { description: tenant context missing }

/v1/cost-spikes:
post:
tags: [cost-spikes]
Expand Down
Loading