REST API Overview

Use Bearer JWT in Authorization header unless an API key is required. All endpoints return JSON.

Auth

• POST /api/auth/login — { email, password }
• GET /api/auth/status — returns { loggedIn }

Plans

• GET /api/plans — public list
• GET /api/plans/admin — admin list
• POST /api/plans/admin — admin create
• PUT /api/plans/admin/:id — admin update
• DELETE /api/plans/admin/:id — admin delete

Tokens

• GET /api/user/tokens — list user tokens
• POST /api/user/tokens/issue-and-email — create and email
• POST /api/user/tokens/:preview/revoke — revoke

SEO

• GET /api/seo/suggestions?seed=... — keyword suggestions
• GET /api/seo/:tenant/suggestions?seed=... — tenant-scoped suggestions
• GET /api/seo/:tenant/analyzer?keyword=... — tenant-scoped analyzer

Indexing

• POST /api/indexing/push — { host, urlList } (enterprise checks primary domain)
• GET /api/indexing/caps — daily caps info

Social

• POST /api/social/schedule — schedule post { platform, content, schedule }
• POST /api/social/post — post now { platform, content }

Traffic

• POST /api/traffic/direct — direct traffic (cap enforced)
• POST /api/traffic/social — social traffic (cap enforced)
• POST /api/traffic/seo — organic traffic (cap enforced)
• GET /api/traffic/logs — listing
• GET /api/traffic/stats — stats

Reseller

• GET /api/reseller/sub-accounts — list
• POST /api/reseller/sub-accounts — create
• DELETE /api/reseller/sub-accounts/:id — remove

Sites

• GET /api/sites/primary — get user primary domain
• POST /api/sites/primary — set user primary domain