REST API Reference

Base URL

http://your-checkgate-server:3000

Authentication

All protected endpoints require one of:

Authorization: Bearer sk_live_your_sdk_key

or an active session cookie set by POST /api/auth/login.

Dashboard mutation requests also require:

X-Checkgate-Request: true

This header is required for all state-changing requests from browser clients (CSRF protection). SDK clients using Authorization: Bearer are exempt.

---

Auth

Login

POST /api/auth/login
Content-Type: application/json

Request Body

{
  "email": "admin@example.com",
  "password": "your-password"
}

Response 200 OK

{
  "email": "admin@example.com",
  "name": "Jane Smith",
  "role": "admin",
  "workspace_name": "Acme Corp",
  "is_setup_complete": true
}

Sets an HttpOnly SameSite=Strict session cookie valid for 7 days.

Response 401 Unauthorized

{
  "error": "Incorrect email or password.",
  "attempts_remaining": 4
}

Response 429 Too Many Requests — account locked after 5 failures in 10 minutes.

{
  "error": "Too many failed attempts. Account locked for 15 minutes.",
  "retry_after_seconds": 900
}

---

Logout

POST /api/auth/logout

Clears the session cookie.

Response 204 No Content

---

Get Current User

GET /api/auth/me

Response 200 OK — returns the authenticated user (same shape as login response, includes is_setup_complete).

Response 401 Unauthorized — no valid session.

---

Workspace Info

GET /api/auth/workspace

Public endpoint — no auth required. Returns the workspace name for the login page.

Response 200 OK

{ "workspace_name": "Acme Corp" }

---

Projects

Projects are the top-level namespace for environments, flags, and SDK keys. Workspace admins can manage all projects; other users see only projects they are members of.

List Projects

GET /api/projects

Returns all projects the caller has access to (all projects for workspace admins; only member projects for others).

Response 200 OK

[
  {
    "id": "550e8400-e29b-41d4-a716-446655440000",
    "name": "Mobile App",
    "slug": "mobile-app",
    "environment_count": 3,
    "member_count": 4,
    "created_at": "2026-04-18T00:00:00Z"
  }
]

---

Create Project

POST /api/projects
Content-Type: application/json

Admin only. Creates a new project and seeds it with Production, Staging, and Development environments plus one SDK key for the Production environment.

Request Body

{ "name": "Mobile App" }

Response 200 OK — returns the created project.

Response 409 Conflict — slug derived from the name already exists.

---

Rename Project

PATCH /api/projects/{project_id}
Content-Type: application/json

{ "name": "Mobile App v2" }

Response 200 OK — returns the updated project.

---

Delete Project

DELETE /api/projects/{project_id}

Admin only. Cascades to all environments, flags, SDK keys, and impressions in the project.

Response 204 No Content

Response 422 Unprocessable Entity — cannot delete the last project.

---

Project Members

List Members

GET /api/projects/{project_id}/members

Response 200 OK

[
  {
    "user_id": 1,
    "name": "Jane Smith",
    "email": "jane@example.com",
    "role": "admin"
  }
]

---

Add Member

POST /api/projects/{project_id}/members
Content-Type: application/json

{ "user_id": 2, "role": "editor" }

• role must be "admin", "editor", or "viewer"

Response 200 OK — returns the added member.

Response 409 Conflict — user is already a member.

---

Update Member Role

PATCH /api/projects/{project_id}/members/{user_id}
Content-Type: application/json

{ "role": "viewer" }

Response 200 OK — returns the updated member.

---

Remove Member

DELETE /api/projects/{project_id}/members/{user_id}

Response 204 No Content

---

Environments

Environments are scoped to a project. All environment routes are nested under /api/projects/{project_id}/environments.

List Environments

GET /api/projects/{project_id}/environments

Response 200 OK

[
  {
    "id": "550e8400-e29b-41d4-a716-446655440000",
    "name": "Production",
    "slug": "production",
    "color": "#ef4444",
    "is_default": false,
    "created_at": "2026-04-10T00:00:00Z"
  }
]

---

Create Environment

POST /api/projects/{project_id}/environments
Content-Type: application/json

Request Body

{
  "name": "Canary",
  "slug": "canary",
  "color": "#f59e0b"
}

• name — required, max 100 characters
• slug — required, max 64 characters, lowercase alphanumerics and hyphens only
• color — optional, must be a valid hex color (#rgb or #rrggbb); defaults to #6366f1

Response 200 OK — returns the created environment.

Response 409 Conflict — slug already exists in this project.

---

Update Environment

PATCH /api/projects/{project_id}/environments/{env_id}
Content-Type: application/json

{ "name": "Canary East", "color": "#8b5cf6" }

Response 200 OK — returns the updated environment.

---

Delete Environment

DELETE /api/projects/{project_id}/environments/{env_id}

Response 204 No Content

Response 422 Unprocessable Entity — cannot delete the default or the last environment.

---

Set Default Environment

POST /api/projects/{project_id}/environments/{env_id}/default

Response 200 OK — returns the updated environment with is_default: true.

---

Flags

Flag endpoints remain environment-scoped via {env_id} (UUID). The environment UUID can be obtained from the environments list.

List Flags

GET /api/environments/{env_id}/flags

Response 200 OK

[
  {
    "key": "new-checkout-flow",
    "is_enabled": true,
    "rollout_percentage": 50,
    "description": "New checkout UI rollout",
    "rules": []
  }
]

Response 404 Not Found — environment does not exist.

---

Get a Flag

GET /api/environments/{env_id}/flags/{key}

Response 200 OK — returns the flag object.

Response 404 Not Found — flag or environment does not exist.

---

Create or Replace a Flag

POST /api/environments/{env_id}/flags
Content-Type: application/json

Creates a flag. If the key already exists in this environment, replaces it entirely.

Request Body

{
  "key": "new-checkout-flow",
  "is_enabled": true,
  "rollout_percentage": 50,
  "description": "New checkout UI rollout",
  "rules": []
}

Response 200 OK — returns the created flag.

Response 422 Unprocessable Entity — invalid flag key or rollout_percentage out of range.

---

Partially Update a Flag

PATCH /api/environments/{env_id}/flags/{key}
Content-Type: application/json

Applies a JSON merge patch. Only the provided fields are updated; omitted fields retain their current values.

{ "rollout_percentage": 100 }

{ "is_enabled": false }

Response 200 OK — returns the updated flag.

Response 404 Not Found — flag does not exist.

---

Delete a Flag

DELETE /api/environments/{env_id}/flags/{key}

Deletes the flag and broadcasts a DELETE event to connected SDK clients.

Response 204 No Content

---

Promote a Flag

POST /api/environments/{env_id}/flags/{key}/promote
Content-Type: application/json

Copies the flag's configuration from {env_id} to another environment atomically.

Request Body

{ "target_env_id": "uuid-of-target-environment" }

Response 200 OK — returns the flag as it now exists in the target environment.

---

Flag Schema

Flag Object

Field	Type	Required	Description
key	string	Yes	Unique within environment. Alphanumerics, underscores, hyphens. Max 100 chars.
is_enabled	boolean	Yes	Master switch. false always evaluates to false.
rollout_percentage	integer | null	No	0–100. null is treated as 100%.
description	string | null	No	Human-readable description.
rules	TargetingRule[]	No	Targeting rules. Defaults to [].

TargetingRule Object

Field	Type	Required	Description
attribute	string	Yes	User attribute name to match against.
operator	Operator	Yes	Comparison operator.
values	string[]	Yes	One or more values to match. At least one must match.

Operator Enum

Value	Description
equals	Attribute value equals any of the provided values
not_equals	Attribute value does not equal any of the provided values
contains	Attribute value contains any of the provided values as a substring
starts_with	Attribute value starts with any of the provided values
ends_with	Attribute value ends with any of the provided values

---

Impressions

Ingest Impressions

POST /api/environments/{env_id}/impressions
Authorization: Bearer sk_live_your_key
Content-Type: application/json

Reports a batch of flag evaluation events from an SDK client. Authenticated with an SDK key; does not require admin role. CSRF header not required for Bearer-authenticated requests.

Request Body — array of up to 500 impression objects

[
  {
    "flag_key": "checkout_v2",
    "user_id": "user-123",
    "value": "true",
    "context": { "plan": "pro" },
    "evaluated_at": "2026-04-18T10:00:00Z"
  }
]

Field	Type	Required	Description
flag_key	string	Yes	The evaluated flag key
user_id	string | null	No	User identifier; null for anonymous
value	string	Yes	Evaluation result (e.g. "true", "false")
context	object | null	No	Evaluation context attributes
evaluated_at	ISO-8601 string	No	Defaults to server receive time

Response 204 No Content

Response 413 Payload Too Large — batch exceeds 500 items.

---

List Impressions

GET /api/environments/{env_id}/impressions

Query Parameters

Param	Default	Description
flag_key	—	Filter by exact flag key
user_id	—	Filter by exact user ID
value	—	Filter by evaluated value (e.g. "true", "false")
since_id	—	Return only rows with id > since_id — for live polling
limit	50	Max results (1–200)
offset	0	Pagination offset (ignored when since_id is set)

total in the response always reflects the count matching the base filters (ignoring since_id), so it can be used for pagination display regardless of polling state.

Response 200 OK

{
  "items": [
    {
      "id": 142,
      "flag_key": "checkout_v2",
      "user_id": "user-123",
      "value": "true",
      "context": { "plan": "pro" },
      "evaluated_at": "2026-04-18T10:00:00Z"
    }
  ],
  "total": 142
}

---

Impression Stats

GET /api/environments/{env_id}/impressions/stats

Returns per-flag aggregate counts.

Response 200 OK

[
  {
    "flag_key": "checkout_v2",
    "total": 1420,
    "true_count": 750,
    "false_count": 670,
    "unique_users": 89,
    "last_seen": "2026-04-18T10:30:00Z"
  }
]

---

SDK Keys

SDK keys are scoped to a project and bound to a specific environment. All key routes are nested under /api/projects/{project_id}/keys.

List Keys

GET /api/projects/{project_id}/keys

Returns all SDK keys for the project. The full key value is never returned after creation.

Response 200 OK

[
  {
    "id": 1,
    "name": "Default",
    "prefix": "sk_live_a1b2c3…",
    "environment_id": "550e8400-e29b-41d4-a716-446655440000",
    "environment_name": "Production",
    "created_at": "2026-04-10T00:00:00Z"
  }
]

---

Create Key

POST /api/projects/{project_id}/keys
Content-Type: application/json

{
  "name": "iOS Production",
  "environment_id": "550e8400-e29b-41d4-a716-446655440000"
}

• environment_id must belong to the project

Response 200 OK — returns the key including the full value (shown once only).

{
  "id": 2,
  "name": "iOS Production",
  "key": "sk_live_a1b2c3d4e5f6...",
  "prefix": "sk_live_a1b2c3…",
  "environment_id": "550e8400-e29b-41d4-a716-446655440000",
  "environment_name": "Production",
  "created_at": "2026-04-18T12:00:00Z"
}

---

Revoke Key

DELETE /api/projects/{project_id}/keys/{id}

Response 204 No Content

Response 422 Unprocessable Entity — cannot revoke the last key in the project.

---

Users

Users are workspace-level. Role here is the workspace role; per-project access is managed via Project Members.

List Users

GET /api/users

Response 200 OK

[
  {
    "id": 1,
    "name": "Jane Smith",
    "email": "jane@example.com",
    "role": "admin",
    "created_at": "2026-04-10T00:00:00Z"
  }
]

---

Create User

POST /api/users
Content-Type: application/json

{
  "name": "Bob Jones",
  "email": "bob@example.com",
  "role": "viewer",
  "password": "their-initial-password"
}

• role must be "admin", "editor", or "viewer"
• password must be at least 8 characters
• email must be unique

Response 200 OK — returns the created user (password hash is never returned).

Response 409 Conflict — email already in use.

{ "error": "Email address is already in use." }

Response 422 Unprocessable Entity — invalid input or password too short.

---

Delete User

DELETE /api/users/{id}

Response 204 No Content

Response 422 Unprocessable Entity — cannot delete yourself or the last admin.

---

SSE Stream

Connect

GET /stream
Authorization: Bearer sk_live_your_key
Accept: text/event-stream

Or for browser EventSource:

GET /stream?sdk_key=sk_live_your_key

Opens a persistent SSE connection scoped to the environment associated with the SDK key. The server sends:

1. A connected event immediately
2. One update event per existing flag in the key's environment (bootstrap)
3. update events as flags change in that environment in real time
4. Keep-alive comments every 15 seconds

Event: connected

event: connected
data: true

Sent once when the connection is established. SDK clients should clear their local store on receiving this event to prepare for a clean bootstrap.

Event: update

event: update
data: {"type":"UPSERT","env_id":"<uuid>","flag":{"key":"my-flag","is_enabled":true,...}}

event: update
data: {"type":"DELETE","env_id":"<uuid>","key":"my-flag"}

Keep-Alive

: keep-alive-text

Sent every 15 seconds to prevent proxy timeouts.

Reconnection

If the SSE connection drops, clients should reconnect with exponential backoff. On reconnect:

1. Server sends connected → SDK clears local store
2. Server replays all current flags for the environment → SDK rebuilds from scratch

This guarantees consistency even after missed updates during the disconnected period.

---

Health Check

GET /health

Public endpoint — no authentication required.

Response 200 OK — body: OK

Use this for load balancer and container health checks.