Administration

The Administration APIs cover two admin surfaces plus the platform’s site-settings routes. All paths are served under the /api/v1 prefix.

  • Administrative-org admin (/api/v1/admin/*) — user and organization management performed by admins of the platform’s administrative organization.
  • Site admin console (/api/v1/accounts/admin/*) — the endpoints powering the KubeDB Platform site-administration UI: usage analytics, users, organizations, clusters, and authentication-source management.
  • Site settings (/allowed-domains, /disable-registration, /branding) — a small set of global settings whose read endpoints are public and whose write endpoints require site-admin (or org-admin, for branding) authorization.

Almost every write endpoint (and every admin read endpoint) requires org context, supplied via the ?org=<slug> query parameter, plus a relationship-based authorization check. The tables on each page state the exact authorization relation required.

Two admin surfaces: the legacy /admin group (administrative-org admins) and /accounts/admin (site-admin console powering the KubeDB Platform admin UI). Both admin groups require Token + org context + authz checks. (The site-settings routes below are a separate surface whose read endpoints are public — see that table.)

/api/v1/admin (administrative-org admins)

MethodPathDescription
GET/orgsList all organizations
GET/POST/usersList / create users
PATCH/DELETE/users/:usernameEdit / delete a user
POST/users/:username/update, /users/:username/change-passwordUpdate profile / change password
GET/POST/users/:username/orgsList / create orgs for a user
GET/users/:uidGet user info by ID

/api/v1/accounts/admin (site admin console)

MethodPathDescription
GET/Usage analytics dashboard
GET/configSite configuration
POST/config/test_mailSend a test email
GET/monitorSite monitor info
DELETE/delete/inactive-usersPurge inactive users
GET/usersList users
GET/users/deleted_accountsList deleted accounts
POST/users/deleted_accounts/:id/reactivateReactivate a deleted user
POST/users/newCreate a user
POST/users/:useridEdit a user
POST/users/:userid/deleteDeactivate a user
GET/orgsList organizations
GET/orgs/orphaned/List orphaned organizations
DELETE/orgs/orphaned/delete/:idDelete an orphaned org
GET/clustersList all clusters
GET/auths, /auths/auth-typesList authentication sources / types
POST/auths/newCreate an authentication source
GET/POST/auths/:authid, POST /auths/:authid/deleteManage an auth source
GET/external_oauthList external OAuth2 sources
POST/external_oauth/new, /external_oauth/:provider, /external_oauth/:provider/deleteManage external OAuth2 sources

Site settings (misc, /api/v1)

MethodPathAuthDescription
GET/allowed-domainsPublicList whitelisted email domains
POST/PATCH/allowed-domainsSite admin authzAdd / remove a whitelisted domain
GET/disable-registrationPublicGet registration enabled/disabled status
POST/disable-registrationSite admin authzEnable/disable new user registration
GET/brandingPublicGet branding (logo, app name, colors)
POST/brandingOrg + authzCheck(edit_branding_options)Update branding

Pages