Skip to content
Granit
Blog

Endpoint Registry — All API Routes

Complete inventory of all HTTP endpoints exposed by Granit framework modules.

Conventions

Section titled “Conventions”
  • Route prefixes are relative — each module defines a short prefix (e.g., "templates", "blobs", "identity/users") via its *EndpointsOptions class. The application composes the full path by mounting modules under a versioned group:
// Application startup (e.g., Program.cs)
RouteGroupBuilder api = app.MapGroup("api/v{version:apiVersion}");


api.MapGranitBlobStorageEndpoints();   // → /api/v1/blobs/...
api.MapGranitTemplatingEndpoints();    // → /api/v1/templates/...
api.MapGranitIdentityEndpoints();      // → /api/v1/identity/users/...
  • Permissions: follow [Group].[Resource].[Action] (three segments)
  • Error responses: all endpoints return RFC 7807 Problem Details on errors
  • Query endpoints (MapQueryEndpoints<T>) are registered by the application, not the framework — the route pattern is app-defined
  • Routes below show only the module-relative path (without the app prefix)

Authentication & API Keys

Section titled “Authentication & API Keys”

Module: Granit.Authentication.ApiKeys.Endpoints Prefix: api-keys

MethodRouteOperationPermission
GET/ListApiKeysApiKeys.Keys.Read
GET/{id:guid}GetApiKeyByIdApiKeys.Keys.Read
POST/CreateApiKeyApiKeys.Keys.Create
POST/{id:guid}/revokeRevokeApiKeyApiKeys.Keys.Revoke
POST/{id:guid}/rotateRotateApiKeyApiKeys.Keys.Rotate
PUT/{id:guid}/scopesUpdateApiKeyScopesApiKeys.Keys.UpdateScopes

Authorization

Section titled “Authorization”

Module: Granit.Authorization.Endpoints Prefix: auth

MethodRouteOperationPermission
GET/meGetMyPermissionsAuthenticated
GET/definitionsGetPermissionDefinitionsAdmin
GET/roles/{roleName}GetRolePermissionsAdmin
PUT/roles/{roleName}/{permissionName}GrantPermissionAdmin
DELETE/roles/{roleName}/{permissionName}RevokePermissionAdmin

Background Jobs

Section titled “Background Jobs”

Module: Granit.BackgroundJobs.Endpoints Prefix: background-jobs

MethodRouteOperationPermission
GET/GetAllBackgroundJobsBackgroundJobs.Jobs.Manage
GET/{name}GetBackgroundJobByNameBackgroundJobs.Jobs.Manage
POST/{name}/pausePauseBackgroundJobBackgroundJobs.Jobs.Manage
POST/{name}/resumeResumeBackgroundJobBackgroundJobs.Jobs.Manage
POST/{name}/triggerTriggerBackgroundJobBackgroundJobs.Jobs.Manage

Blob Storage

Section titled “Blob Storage”

Module: Granit.BlobStorage.Endpoints Prefix: blobs

MethodRouteOperationPermission
GET/{id:guid}GetBlobDescriptorBlobStorage.Blobs.Manage
POST/uploadInitiateBlobUploadBlobStorage.Blobs.Manage
POST/{id:guid}/confirmConfirmBlobUploadBlobStorage.Blobs.Manage
POST/{id:guid}/download-urlGenerateBlobDownloadUrlBlobStorage.Blobs.Manage
DELETE/{id:guid}DeleteBlobBlobStorage.Blobs.Manage
POST/cleanup-orphansCleanupOrphanedBlobsBlobStorage.Blobs.Manage

Blob Proxy

Section titled “Blob Proxy”

Module: Granit.BlobStorage.Proxy Prefix: blobs/proxy

MethodRouteOperationAuth
PUT/upload/{token}BlobProxyUploadToken-based
GET/download/{token}BlobProxyDownloadToken-based
Section titled “Cookie Consent”

Module: Granit.Http.Cookies.Endpoints Prefix: (root — mounted directly on the app group)

MethodRouteOperationAuth
GET/cookies/configGetCookieConsentConfigAnonymous

Data Exchange

Section titled “Data Exchange”

Module: Granit.DataExchange.Endpoints Prefix: data-exchange

Import

Section titled “Import”
MethodRouteOperationPermission
GET/jobsListImportJobsDataExchange.Import.*
POST/CreateImportJobDataExchange.Import.*
POST/{jobId}/previewPreviewImportJobDataExchange.Import.*
PUT/{jobId}/mappingsConfirmImportMappingsDataExchange.Import.*
POST/{jobId}/executeExecuteImportJobDataExchange.Import.*
POST/{jobId}/dry-runDryRunImportJobDataExchange.Import.*
GET/{jobId}GetImportJobDataExchange.Import.*
DELETE/{jobId}DeleteImportJobDataExchange.Import.*
GET/{jobId}/reportGetImportReportDataExchange.Import.*
GET/{jobId}/correction-fileDownloadImportCorrectionFileDataExchange.Import.*

Export

Section titled “Export”
MethodRouteOperationPermission
GET/export/jobsListExportJobsDataExchange.Export.*
POST/export/jobsCreateExportJobDataExchange.Export.*
GET/export/jobs/{id}GetExportJobDataExchange.Export.*
GET/export/jobs/{id}/downloadDownloadExportFileDataExchange.Export.*

Metadata

Section titled “Metadata”
MethodRouteOperationPermission
GET/metadata/definitionsGetExportDefinitionsDataExchange.Export.*
GET/metadata/definitions/{name}/fieldsGetExportDefinitionFieldsDataExchange.Export.*
GET/metadata/presets/{definitionName}ListExportPresetsDataExchange.Export.*
POST/metadata/presetsSaveExportPresetDataExchange.Export.*
DELETE/metadata/presets/{definitionName}/{presetName}DeleteExportPresetDataExchange.Export.*

Features

Section titled “Features”

Module: Granit.Features.Endpoints Prefix: features

MethodRouteOperationPermission
GET/definitionsGetFeatureDefinitionsFeatures.Flags.Read
GET/valuesGetAllFeatureValuesAuthenticated
GET/values/{name}GetFeatureValueAuthenticated
PUT/overrides/{name}SetFeatureOverrideFeatures.Flags.Manage
DELETE/overrides/{name}DeleteFeatureOverrideFeatures.Flags.Manage

Identity

Section titled “Identity”

Identity uses two separate endpoint groups with distinct prefixes.

User Cache (identity/users)

Section titled “User Cache (identity/users)”

Module: Granit.Identity.EndpointsMapGranitIdentityEndpoints() Prefix: identity/users

MethodRouteOperationPermission
GET/SearchIdentityUsersIdentity.UserCache.Read
GET/{userId}GetIdentityUserIdentity.UserCache.Read
POST/batchBatchResolveIdentityUsersIdentity.UserCache.Read
GET/statsGetIdentityUserCacheStatsIdentity.UserCache.Read
GET/capabilitiesGetCapabilitiesIdentity.UserCache.Read
POST/syncSyncIdentityUsersIdentity.UserCache.Sync
POST/sync-allSyncAllIdentityUsersIdentity.UserCache.Sync
POST/sync-staleSyncStaleIdentityUsersIdentity.UserCache.Sync
DELETE/{userId}EraseIdentityUserDataIdentity.UserCache.Delete

Identity Provider (identity/provider)

Section titled “Identity Provider (identity/provider)”

Module: Granit.Identity.EndpointsMapGranitIdentityProviderEndpoints() Prefix: identity/provider

Users

Section titled “Users”
MethodRouteOperationPermission
GET/usersListProviderUsersIdentity.Users.Read
GET/users/{userId}GetProviderUserIdentity.Users.Read
POST/usersCreateProviderUserIdentity.Users.Manage
PUT/users/{userId}UpdateProviderUserIdentity.Users.Manage

Roles

Section titled “Roles”
MethodRouteOperationPermission
GET/rolesListProviderRolesIdentity.Roles.Read
GET/roles/{roleName}/membersGetRoleMembersIdentity.Roles.Read
GET/users/{userId}/rolesGetUserRolesIdentity.Roles.Read
PUT/users/{userId}/roles/{roleName}AssignUserRoleIdentity.Roles.Manage
DELETE/users/{userId}/roles/{roleName}RemoveUserRoleIdentity.Roles.Manage

Groups

Section titled “Groups”
MethodRouteOperationPermission
GET/groupsListProviderGroupsIdentity.Groups.Read
GET/users/{userId}/groupsGetUserGroupsIdentity.Groups.Read
PUT/users/{userId}/groups/{groupId}AddUserToGroupIdentity.Groups.Manage
DELETE/users/{userId}/groups/{groupId}RemoveUserFromGroupIdentity.Groups.Manage

Sessions & Devices

Section titled “Sessions & Devices”
MethodRouteOperationPermission
GET/users/{userId}/sessionsListUserSessionsIdentity.Sessions.Read
DELETE/users/{userId}/sessions/{sessionId}TerminateSessionIdentity.Sessions.Manage
DELETE/users/{userId}/sessionsTerminateAllSessionsIdentity.Sessions.Manage
GET/users/{userId}/devicesGetUserDeviceActivityIdentity.Sessions.Read

Passwords

Section titled “Passwords”
MethodRouteOperationPermission
GET/users/{userId}/password/changed-atGetPasswordChangedAtIdentity.Passwords.Read
POST/users/{userId}/password/reset-emailSendPasswordResetEmailIdentity.Passwords.Manage
POST/users/{userId}/password/temporarySetTemporaryPasswordIdentity.Passwords.Manage

Webhook

Section titled “Webhook”
MethodRouteOperationAuth
POST/webhookIdentityWebhookSignature-validated

Localization

Section titled “Localization”

Module: Granit.Localization.Endpoints Prefix: (root — mounted directly on the app group)

MethodRouteOperationPermission
GET/localizationGetGranitLocalizationAnonymous
GET/localization/overridesGetLocalizationOverridesLocalization.Overrides.Manage
PUT/localization/overrides/{resourceName}/{cultureName}/{key}PutLocalizationOverrideLocalization.Overrides.Manage
DELETE/localization/overrides/{resourceName}/{cultureName}/{key}DeleteLocalizationOverrideLocalization.Overrides.Manage

Notifications

Section titled “Notifications”

Module: Granit.Notifications.Endpoints Prefix: notifications

Inbox

Section titled “Inbox”
MethodRouteOperationAuth
GET/GetNotificationsAuthenticated
GET/unread/countGetUnreadCountAuthenticated
POST/{id:guid}/readMarkAsReadAuthenticated
POST/read-allMarkAllAsReadAuthenticated

Activity Feed

Section titled “Activity Feed”
MethodRouteOperationAuth
GET/entity/{entityType}/{entityId}GetEntityActivityFeedAuthenticated

Preferences & Subscriptions

Section titled “Preferences & Subscriptions”
MethodRouteOperationAuth
GET/preferencesGetPreferencesAuthenticated
PUT/preferencesUpdatePreferenceAuthenticated
GET/typesGetNotificationTypesAuthenticated
GET/subscriptionsGetSubscriptionsAuthenticated
POST/subscriptions/{typeName}SubscribeAuthenticated
DELETE/subscriptions/{typeName}UnsubscribeAuthenticated

Entity Followers

Section titled “Entity Followers”
MethodRouteOperationAuth
POST/entity/{entityType}/{entityId}/followFollowEntityAuthenticated
DELETE/entity/{entityType}/{entityId}/followUnfollowEntityAuthenticated
GET/entity/{entityType}/{entityId}/followersGetEntityFollowersAuthenticated

OpenIddict

Section titled “OpenIddict”

OpenIddict uses two endpoint groups: account self-service (anonymous + authenticated) and admin management (permission-protected).

Account Self-Service (account)

Section titled “Account Self-Service (account)”

Module: Granit.OpenIddict.EndpointsMapOpenIddictEndpoints() Prefix: account

Registration & Email

Section titled “Registration & Email”
MethodRouteOperationAuth
POST/registerRegisterAccountAnonymous
GET/confirm-emailConfirmEmailAnonymous
POST/resend-confirmation-emailResendConfirmationEmailAuthenticated

Profile

Section titled “Profile”
MethodRouteOperationAuth
GET/profileGetAccountProfileAuthenticated
PUT/profileUpdateAccountProfileAuthenticated

Password

Section titled “Password”
MethodRouteOperationAuth
POST/change-passwordChangePasswordAuthenticated
POST/forgot-passwordForgotPasswordAnonymous
POST/reset-passwordResetPasswordAnonymous

Two-Factor Authentication

Section titled “Two-Factor Authentication”
MethodRouteOperationAuth
GET/two-factorGetTwoFactorStatusAuthenticated
GET/two-factor/authenticator-keyGetAuthenticatorKeyAuthenticated
POST/two-factor/enableEnableTwoFactorAuthenticated
POST/two-factor/disableDisableTwoFactorAuthenticated
POST/two-factor/recovery-codesGenerateRecoveryCodesAuthenticated

External Logins

Section titled “External Logins”
MethodRouteOperationAuth
GET/external-loginsListExternalLoginsAuthenticated
POST/external-logins/challenge/{provider}ChallengeExternalLoginAnonymous
GET/external-logins/callbackExternalLoginCallbackAnonymous
DELETE/external-logins/{provider}UnlinkExternalLoginAuthenticated

Passkeys (WebAuthn)

Section titled “Passkeys (WebAuthn)”
MethodRouteOperationAuth
GET/passkeysListPasskeysAuthenticated
POST/passkeys/register/beginBeginPasskeyRegistrationAuthenticated
POST/passkeys/register/completeCompletePasskeyRegistrationAuthenticated
POST/passkeys/assertion/beginBeginPasskeyAssertionAnonymous
PATCH/passkeys/{id}RenamePasskeyAuthenticated
DELETE/passkeys/{id}DeletePasskeyAuthenticated

Account & Session

Section titled “Account & Session”
MethodRouteOperationAuth
POST/deleteDeleteAccountAuthenticated
POST/session/heartbeatSessionHeartbeatAuthenticated
POST/session/back-to-impersonatorBackToImpersonatorAuthenticated

Admin Management (admin)

Section titled “Admin Management (admin)”

Module: Granit.OpenIddict.EndpointsMapOpenIddictEndpoints() Prefix: admin

Users

Section titled “Users”
MethodRouteOperationPermission
GET/usersListUsersOpenIddict.Users.Read
GET/users/{userId}GetUserOpenIddict.Users.Read
POST/usersCreateUserOpenIddict.Users.Create
DELETE/users/{userId}DeleteUserOpenIddict.Users.Delete
POST/users/{userId}/impersonateImpersonateUserOpenIddict.Users.Impersonate

Roles

Section titled “Roles”
MethodRouteOperationPermission
GET/rolesListRolesOpenIddict.Roles.Read
POST/rolesCreateRoleOpenIddict.Roles.Create
DELETE/roles/{roleName}DeleteRoleOpenIddict.Roles.Delete
GET/roles/{roleName}/membersGetRoleMembersOpenIddict.Roles.Read

Groups

Section titled “Groups”
MethodRouteOperationPermission
GET/groupsListGroupsOpenIddict.Groups.Read
POST/groupsCreateGroupOpenIddict.Groups.Create
DELETE/groups/{groupId}DeleteGroupOpenIddict.Groups.Delete
POST/groups/{groupId}/membersAddGroupMemberOpenIddict.Groups.Manage
DELETE/groups/{groupId}/members/{userId}RemoveGroupMemberOpenIddict.Groups.Manage

OIDC Applications

Section titled “OIDC Applications”
MethodRouteOperationPermissionResponse
GET/oidc/applicationsListOidcApplicationsOpenIddict.Applications.ReadOidcApplicationResponse[]
POST/oidc/applicationsCreateOidcApplicationOpenIddict.Applications.Create201 / 409
DELETE/oidc/applications/{clientId}DeleteOidcApplicationOpenIddict.Applications.Delete204 / 404
POST/oidc/applications/{clientId}/rotate-secretRotateOidcApplicationSecretOpenIddict.Applications.RotateOidcSecretRotationResponse / 404

Response types:

interface OidcApplicationResponse {
  id: string;
  clientId: string;
  displayName: string;
  type: string; // "public" | "confidential"
}


interface OidcSecretRotationResponse {
  clientId: string;
  newSecret: string; // ⚠ Shown ONCE — display in a copyable modal
}

OIDC Scopes

Section titled “OIDC Scopes”
MethodRouteOperationPermissionResponse
GET/oidc/scopesListOidcScopesOpenIddict.Scopes.ReadOidcScopeResponse[]
POST/oidc/scopesCreateOidcScopeOpenIddict.Scopes.Create201 / 409
DELETE/oidc/scopes/{scopeName}DeleteOidcScopeOpenIddict.Scopes.Delete204 / 404
interface OidcScopeResponse {
  id: string;
  name: string;
  displayName: string;
}

OIDC Authorizations

Section titled “OIDC Authorizations”
MethodRouteOperationPermissionResponse
GET/oidc/authorizationsListOidcAuthorizationsOpenIddict.Authorizations.ReadOidcAuthorizationResponse[]
DELETE/oidc/authorizations/{id}RevokeOidcAuthorizationOpenIddict.Authorizations.Revoke204 / 404
DELETE/oidc/authorizations/user/{userId}RevokeUserOidcAuthorizationsOpenIddict.Authorizations.Revoke204
interface OidcAuthorizationResponse {
  id: string;
  subject: string; // userId
  status: string;  // "valid" | "revoked"
  type: string;    // "permanent" | "ad-hoc"
}

Privacy (GDPR)

Section titled “Privacy (GDPR)”

Module: Granit.Privacy.Endpoints Prefix: privacy

Data Export (Art. 15/20)

Section titled “Data Export (Art. 15/20)”
MethodRouteOperationPermission
POST/exportRequestPrivacyExportPrivacy.Export.Execute
GET/export/{requestId}GetPrivacyExportStatusPrivacy.Export.Read
GET/exportListPrivacyExportsPrivacy.Export.Read

Data Deletion (Art. 17)

Section titled “Data Deletion (Art. 17)”
MethodRouteOperationPermission
POST/deletionRequestPrivacyDeletionPrivacy.Deletion.Execute
POST/deletion/{requestId}/cancelCancelPrivacyDeletionPrivacy.Deletion.Execute
GET/deletion/{requestId}GetPrivacyDeletionStatusPrivacy.Deletion.Execute
GET/deletionListPrivacyDeletionsPrivacy.Deletion.Execute
Section titled “Legal Agreements (Art. 7)”
MethodRouteOperationPermission
GET/agreements/documentsListPrivacyLegalDocumentsPrivacy.Agreements.Read
GET/agreements/statusGetPrivacyConsentStatusPrivacy.Agreements.Read
GET/agreements/historyListPrivacyAgreementHistoryPrivacy.Agreements.Read
POST/agreements/acceptAcceptPrivacyAgreementPrivacy.Agreements.Create

QueryEngine

Section titled “QueryEngine”

Module: Granit.QueryEngine.Endpoints Prefix: app-defined via MapQueryEndpoints<T>(pattern)

MethodRouteOperation
GET/{pattern}Query{EntityName}
GET/{pattern}/metaGet{EntityName}Meta
GET/{pattern}/saved-viewsGetSavedViews
POST/{pattern}/saved-viewsCreateSavedView
PUT/{pattern}/saved-views/{id}UpdateSavedView
DELETE/{pattern}/saved-views/{id}DeleteSavedView
POST/{pattern}/saved-views/{id}/set-defaultSetDefaultSavedView

Settings

Section titled “Settings”

Module: Granit.Settings.Endpoints Prefix: settings

MethodRouteOperationPermission
GET/userGetAllUserSettingsAuthenticated
GET/user/{name}GetUserSettingAuthenticated
PUT/user/{name}UpdateUserSettingAuthenticated
DELETE/user/{name}DeleteUserSettingAuthenticated
GET/tenantGetAllTenantSettingsSettings.Tenant.Read
PUT/tenant/{name}UpdateTenantSettingSettings.Tenant.Manage
GET/globalGetAllGlobalSettingsSettings.Global.Read
PUT/global/{name}UpdateGlobalSettingSettings.Global.Manage

Templating

Section titled “Templating”

Module: Granit.Templating.Endpoints Prefix: templates

Templates

Section titled “Templates”
MethodRouteOperationPermission
GET/ListTemplatesTemplates.Templates.Manage
GET/{name}GetTemplateDetailTemplates.Templates.Manage
POST/CreateTemplateDraftTemplates.Templates.Manage
PUT/{name}UpdateTemplateDraftTemplates.Templates.Manage
DELETE/{name}/draftDeleteTemplateDraftTemplates.Templates.Manage
POST/{name}/publishPublishTemplateTemplates.Templates.Manage
POST/{name}/unpublishUnpublishTemplateTemplates.Templates.Manage
GET/{name}/lifecycleGetTemplateLifecycleTemplates.Templates.Manage
POST/{name}/previewPreviewTemplateTemplates.Templates.Manage
GET/{name}/variablesGetTemplateVariablesTemplates.Templates.Manage
GET/{name}/historyGetTemplateHistoryTemplates.Templates.Manage
GET/{name}/history/{revisionId:guid}GetTemplateRevisionDetailTemplates.Templates.Manage

Categories

Section titled “Categories”
MethodRouteOperationPermission
GET/categoriesListTemplateCategoriesTemplates.Templates.Manage
POST/categoriesCreateTemplateCategoryTemplates.Templates.Manage
PUT/categories/{id}UpdateTemplateCategoryTemplates.Templates.Manage
DELETE/categories/{id}DeleteTemplateCategoryTemplates.Templates.Manage

Timeline

Section titled “Timeline”

Module: Granit.Timeline.Endpoints Prefix: timeline

MethodRouteOperationPermission
GET/{entityType}/{entityId}/historyGetEntityStreamTimeline.Entries.Read
POST/{entityType}/{entityId}/entriesPostTimelineEntryTimeline.Entries.Read
DELETE/{entityType}/{entityId}/entries/{id}DeleteTimelineEntryTimeline.Entries.Read

Validation

Section titled “Validation”

Module: Granit.Validation.Endpoints Prefix: validation

MethodRouteOperationAuth
POST/validateValidateFieldAnonymous
POST/validate-batchValidateFieldBatchAnonymous
GET/validatorsGetRegisteredValidatorsAnonymous

Webhooks

Section titled “Webhooks”

Module: Granit.Webhooks.Endpoints Prefix: webhooks

Module Config

Section titled “Module Config”
MethodRouteOperationPermission
GET/configGetWebhooksConfigWebhooks.Subscriptions.Manage

Event Types

Section titled “Event Types”
MethodRouteOperationPermission
GET/event-typesGetWebhookEventTypesWebhooks.Subscriptions.Manage

Subscriptions — CRUD

Section titled “Subscriptions — CRUD”
MethodRouteOperationPermission
GET/subscriptions/{id}GetWebhookSubscriptionWebhooks.Subscriptions.Manage
POST/subscriptionsCreateWebhookSubscriptionWebhooks.Subscriptions.Manage
PUT/subscriptions/{id}UpdateWebhookSubscriptionWebhooks.Subscriptions.Manage
DELETE/subscriptions/{id}DeleteWebhookSubscriptionWebhooks.Subscriptions.Manage

Subscriptions — Lifecycle

Section titled “Subscriptions — Lifecycle”
MethodRouteOperationPermission
POST/subscriptions/{id}/activateActivateWebhookSubscriptionWebhooks.Subscriptions.Manage
POST/subscriptions/{id}/suspendSuspendWebhookSubscriptionWebhooks.Subscriptions.Manage
POST/subscriptions/{id}/deactivateDeactivateWebhookSubscriptionWebhooks.Subscriptions.Manage

Subscriptions — Operations

Section titled “Subscriptions — Operations”
MethodRouteOperationPermission
POST/subscriptions/{id}/rotate-secretRotateWebhookSecretWebhooks.Subscriptions.Manage
POST/subscriptions/{id}/test-pingTestWebhookPingWebhooks.Subscriptions.Manage

Statistics & Deliveries

Section titled “Statistics & Deliveries”
MethodRouteOperationPermission
GET/statsGetWebhookStatsWebhooks.Subscriptions.Manage
GET/deliveries/queryQueryWebhookDeliveriesWebhooks.Subscriptions.Manage
POST/deliveries/{deliveryId}/retryRetryWebhookDeliveryWebhooks.Subscriptions.Manage

Workflow

Section titled “Workflow”

Module: Granit.Workflow.Endpoints Prefix: workflow

MethodRouteOperationPermission
GET/{entityType}/{entityId}/historyGetTransitionHistoryWorkflow.History
GET/transitionsGetAvailableTransitionsWorkflow.History
POST/transitionsExecuteTransitionWorkflow.History

AI

Section titled “AI”

Module: Granit.AI.Endpoints Prefix: ai

Workspaces (Admin)

Section titled “Workspaces (Admin)”
MethodRouteOperationPermission
GET/workspacesListAIWorkspacesAI.Workspaces.*
GET/workspaces/{name}GetAIWorkspaceAI.Workspaces.*
POST/workspacesCreateAIWorkspaceAI.Workspaces.*
PUT/workspaces/{name}UpdateAIWorkspaceAI.Workspaces.*
DELETE/workspaces/{name}DeleteAIWorkspaceAI.Workspaces.*

Chat & Embeddings

Section titled “Chat & Embeddings”
MethodRouteOperationPermission
POST/chat/{workspaceName}CreateChatCompletionAI.Chat.Execute
POST/chat/{workspaceName}/streamStreamChatCompletionAI.Chat.Execute
POST/embeddings/{workspaceName}GenerateEmbeddingAI.Embedding.Generate

Audit Log

Section titled “Audit Log”

Module: Granit.Auditing.Endpoints Prefix: audit-log

MethodRouteOperationPermission
GET/GetAuditEntriesAuditing.AuditEntries.Read
GET/{id:guid}GetAuditEntryByIdAuditing.AuditEntries.Read
GET/entity/{entityType}/{entityId}GetAuditEntriesByEntityAuditing.AuditEntries.Read

Diagnostics

Section titled “Diagnostics”

Module: Granit.Diagnostics.Endpoints Prefix: diagnostics

MethodRouteOperationAuth
GET/healthGetSystemHealthAuthenticated

Reference Data

Section titled “Reference Data”

Module: Granit.ReferenceData.Endpoints Prefix: reference-data

MethodRouteOperationPermission
GET/GetReferenceDataListRead
GET/{code}GetReferenceDataByCodeRead
POST/CreateReferenceDataAdmin
PUT/{code}UpdateReferenceDataAdmin
DELETE/{code}DeactivateReferenceDataAdmin

Summary

Section titled “Summary”
ModuleEndpointsAuth model
API Keys6Permission-based
Audit Log3Permission-based
Authorization5Admin + Authenticated
Background Jobs5Permission-based
Blob Storage6 + 2 proxyPermission + Token
Cookie Consent1Anonymous
Data Exchange19Permission-based
Diagnostics1Authenticated
Features5Permission + Authenticated
Identity — Cache9Permission-based
Identity — Provider18 + webhookPermission-based
Localization4Anonymous + Permission
Notifications14Authenticated
Privacy (GDPR)8Permission-based
QueryEngine7 per entityApp-defined
Reference Data5 per entityApp-defined
Settings8Authenticated + Permission
Templating16Permission-based
Timeline3Permission-based
Validation3Anonymous
Webhooks15Permission-based
Workflow3Permission-based
AI8Permission-based
Total~168+