API status

Public-safe read API is available

CloudNexs exposes a small read-only public API and OpenAPI contract for service, pricing status, and docs metadata while write, upload, payment, report, and MCP actions remain gated.

Read-only first

The Phase 08 public API starts with GET endpoints for services, pricing status, public docs search, public docs fetch, and the OpenAPI JSON contract.

Private routes excluded

Admin, internal, webhook, worker, provider, checkout, upload execution, launch execution, report history, and retest routes are not part of the public API.

Keys and scopes planned

API key shape, scopes, standard errors, and rate-limit strategy are defined, but production key issuance and write/costful scopes remain disabled.

Public-safe endpoints

These endpoints are designed for product knowledge, documentation, and agent-readable status. They do not expose user-owned resources or mutate state.

- GET /public/services reads public service catalog facts.
- GET /public/pricing-status reads draft, non-purchasable pricing status.
- GET /public/docs/search returns allowlisted public docs metadata.
- GET /public/docs/{id} returns one allowlisted public doc summary.
- GET /public/openapi.json returns the public-safe OpenAPI contract.

Gated future actions

Any write, costful, report-owned, or payment-related endpoint waits for later owner-approved phases and must respect auth, ownership, quota, credits, billing, and audit gates.

- Upload execution is not live.
- Real report history and report details are not exposed.
- Checkout and live payment are inactive.
- Public API write actions remain disabled unless explicitly approved per endpoint.
- MCP runtime and MCP write/costful tools are Phase 09 work and remain closed.

API boundary

The public API is read-only and public-safe. Uploads, paid checks, report history, retest, checkout, billing writes, admin changes, provider routes, worker callbacks, public launch claims, and MCP write/costful tools are not public API actions in this phase.