Public API Reference

Authentication, scopes, rate limits, idempotency, endpoints, and request models for the deployment API

Page-aware AI

Ask AI about this page

Get answers grounded in the live Obelisk docs set, with source links, selected-text explainers, and prompts for the next document to read.

This page documents the current public deployment API as implemented in the product today.

Base Surface

Current routes:

  • GET /api/public/v1/deployments/indexer
  • POST /api/public/v1/deployments/indexer
  • GET /api/public/v1/deployments/indexer/[id]
  • GET /api/public/v1/deployments/channel
  • POST /api/public/v1/deployments/channel
  • GET /api/public/v1/deployments/channel/[id]

These routes are organization-scoped through the API key that authenticates the request.

Authentication

Accepted credentials:

  • Authorization: Bearer <API_KEY>
  • x-api-key: <API_KEY>

API keys:

  • use the obk_ token format
  • are stored hashed in the database
  • can be revoked
  • can expire
  • are limited by scopes

Current scopes:

  • deployments:read
  • deployments:write

Only organization owner and admin members can create or revoke these keys from the workspace.

Request Context Headers

Optional request headers:

  • x-request-id
  • idempotency-key

Behavior:

  • if x-request-id is missing, the server creates one
  • if idempotency-key is missing, the request ID is reused
  • create requests are idempotent per template and request body

Response Headers

Every successful and error response includes:

  • x-public-api-version
  • x-request-id

Rate-limit headers:

  • x-ratelimit-limit
  • x-ratelimit-remaining
  • x-ratelimit-reset
  • x-ratelimit-reset-at
  • retry-after

Default rate limit:

  • 120 requests per 60 seconds per API key unless environment configuration overrides it

Endpoint Summary

RouteMethodScopePurpose
/api/public/v1/deployments/indexerGETdeployments:readList indexer deployments for the authenticated organization
/api/public/v1/deployments/indexerPOSTdeployments:writeCreate an indexer deployment
/api/public/v1/deployments/indexer/[id]GETdeployments:readFetch one indexer deployment with recent task and audit history
/api/public/v1/deployments/channelGETdeployments:readList channel deployments for the authenticated organization
/api/public/v1/deployments/channelPOSTdeployments:writeCreate a channel deployment
/api/public/v1/deployments/channel/[id]GETdeployments:readFetch one channel deployment with recent task and audit history

List Query Parameters

Shared list query model:

FieldTypeRequiredNotes
limitintegernominimum 1, maximum appConfig.pagination.maxLimit
offsetintegernominimum 0

Create Indexer Deployment

Request body:

FieldTypeRequiredNotes
namestringyes1-80 characters
templatestringnodefaults to dubhe-indexer-api
regionstringnooptional region override
configJsonUrlstringyesvalid URL to managed indexer config

Example:

curl -X POST \
  -H "Authorization: Bearer <API_KEY>" \
  -H "Content-Type: application/json" \
  -H "Idempotency-Key: indexer-prod-2026-03-12" \
  -d '{"name":"indexer-prod-01","template":"dubhe-indexer-api","configJsonUrl":"https://example.com/indexer.config.json"}' \
  "https://your-app.example.com/api/public/v1/deployments/indexer"

Create Channel Deployment

Request body:

FieldTypeRequiredNotes
namestringyes1-80 characters
templatestringnodefaults to dubhe-channel-api
regionstringnooptional region override
rpcUrlstringyesvalid RPC URL
syncTimeSecondsintegernodefaults to 5, max 3600
dockerImagestringnooptional override; otherwise env-driven
appNamestringnooptional runtime naming override

Example:

curl -X POST \
  -H "Authorization: Bearer <API_KEY>" \
  -H "Content-Type: application/json" \
  -H "Idempotency-Key: channel-prod-2026-03-12" \
  -d '{"name":"channel-prod-01","template":"dubhe-channel-api","rpcUrl":"https://rpc.example.com","syncTimeSeconds":5}' \
  "https://your-app.example.com/api/public/v1/deployments/channel"

Preconditions On Create

Create endpoints currently require all of these to pass:

  • the organization has managed infrastructure access
  • provisioning queue capacity is available
  • provisioning preflight succeeds
  • the API key has deployments:write

Idempotency Behavior

Create endpoints hash the request body and pair it with the idempotency key.

If the same key is reused:

  • with the same payload, the existing deployment is returned
  • with a different payload, the API returns 409 idempotency_conflict

This is the correct pattern for retry-safe automation.

Error Model

The public API normalizes errors into JSON with:

  • error
  • message
  • optional details
  • optional requestId

Current notable error codes:

  • unauthorized
  • forbidden
  • invalid_request
  • invalid_json
  • not_found
  • precondition_failed
  • queue_capacity_exceeded
  • rate_limit_exceeded
  • idempotency_conflict
  • internal_error

What The API Returns

List routes return:

  • total
  • pagination
  • deployments

Create routes return:

  • deployment
  • task
  • idempotentReplay

Single-deployment routes return the deployment plus recent task and audit history for that deployment.

Operational Notes

  • API requests update the key's lastUsedAt timestamp
  • rate limiting is enforced per API key, not globally per organization
  • create routes write provisioning audit logs with source public_api

API Keys and Public Deployment API

Create scoped automation credentials and use the public deployment endpoints safely

Webhooks and Integrations

Use the integrations overview to verify automation surfaces, then configure outbound notification delivery

On this page

Base Surface
Authentication
Request Context Headers
Response Headers
Endpoint Summary
List Query Parameters
Create Indexer Deployment
Create Channel Deployment
Preconditions On Create
Idempotency Behavior
Error Model
What The API Returns
Operational Notes
Related Pages