API Routes
80+ server-side API endpoints powering Arcturus-Prime’s admin operations, AI systems, and public features.
Route Categories
Admin AI & Chat (14 routes)
| Route | Methods | Auth | Purpose |
|---|
/api/admin/chat | POST | admin | Multi-model chat endpoint |
/api/admin/unified-chat | POST | admin | Unified chat with provider routing |
/api/admin/personal-chat | POST | admin | Privacy-focused vault chat (Groq only) |
/api/admin/conversation | GET, POST | admin | Conversation persistence |
/api/admin/openclaw | GET, POST | admin | OpenClaw health check + orchestration |
/api/admin/openclaw-manage | GET, POST | admin | OpenClaw management actions |
/api/admin/ai-coach | POST | admin | AI coaching endpoint |
/api/admin/ai-prompts | GET | admin | AI prompt templates |
/api/admin/tool-routing | POST | admin | Intent-based tool routing |
/api/admin/workbench | POST | admin | Workbench multi-mode API |
/api/admin/rag | GET, POST | admin | RAG management and ingestion |
/api/admin/knowledge | GET, POST | admin | Knowledge base operations |
/api/admin/vault-context | GET | admin | Vault context for RAG |
/api/admin/alerts | GET | admin | System alerts |
Admin Content (12 routes)
| Route | Methods | Auth | Purpose |
|---|
/api/admin/content-gen | POST | admin | AI content generation |
/api/admin/content-index | GET | admin | Content collection index |
/api/admin/create-content | POST | admin | Create new content |
/api/admin/update-content | POST | admin | Update existing content |
/api/admin/update-frontmatter | POST | admin | Update frontmatter metadata |
/api/admin/pipeline | POST | admin | Content pipeline operations |
/api/admin/generate | POST | admin | General AI generation |
/api/admin/generate-image | POST | admin | AI image generation |
/api/admin/sanitize | POST | admin | PII sanitization |
/api/admin/fact-check | POST | admin | Content fact checking |
/api/admin/voice-check | POST | admin | Voice authenticity scoring |
/api/admin/docs-generate | POST | admin | Documentation generation |
Admin Infrastructure (10 routes)
| Route | Methods | Auth | Purpose |
|---|
/api/admin/cloudflare-status | GET | admin | Cloudflare analytics proxy |
/api/admin/console | POST | admin | Server console operations |
/api/admin/security | GET, POST | admin | Security scanning |
/api/admin/forge | POST | admin | Forge build operations |
/api/admin/forge-git | POST | admin | Git operations via Forge |
/api/admin/demo | POST | admin | Demo session management |
/api/admin/demo-forge | POST | admin | Demo Forge operations |
/api/admin/email | POST | admin | Email operations |
/api/admin/github-sync | POST | admin | GitHub synchronization |
/api/admin/gitea-pr | POST | admin | Gitea PR operations |
Admin Probes & Misc (8 routes)
| Route | Methods | Auth | Purpose |
|---|
/api/admin/probes | GET, POST | admin | Probe management |
/api/admin/probe-export | GET | admin | Export probes |
/api/admin/probe-import | POST | admin | Import probes |
/api/admin/workflow | POST | admin | Workflow operations |
/api/admin/voice-stt | POST | admin | Whisper speech-to-text |
/api/admin/voice-tts | POST | admin | ElevenLabs text-to-speech |
/api/admin/rt-control/[...path] | ALL | admin | Real-time control proxy |
Pentest (2 routes)
| Route | Methods | Auth | Purpose |
|---|
/api/admin/pentest/nodes | GET | admin | Pentest node health |
/api/admin/pentest/[...path] | ALL | admin | Multi-node pentest proxy |
Argonaut (9 routes)
| Route | Methods | Auth | Purpose |
|---|
/api/argonaut/chat | POST | admin | Argonaut chat with RAG |
/api/argonaut/status | GET | admin | Agent status |
/api/argonaut/ingest | GET, POST | admin | RAG pipeline |
/api/argonaut/profiles | GET, PUT | admin | Profile management |
/api/argonaut/search | GET | admin | Vault/RAG search |
/api/argonaut/models | GET | admin | Available models |
/api/argonaut/voice-score | POST | admin | Voice scoring |
/api/argonaut/tasks | GET, POST | admin | Task queue |
/api/argonaut/memory | GET, POST | admin | Conversation memory |
Public (5+ routes)
| Route | Methods | Auth | Purpose |
|---|
/search-index.json | GET | public | Search index for header search |
/rss.xml | GET | public | RSS feed |
/_api/chat | POST | public | Public chat widget |
/_api/contact | POST | public | Contact form handler |
Common Patterns
- Admin auth: All
/api/admin/* routes require validateAdmin(request) — returns 401 if not admin
- SSE streaming: Chat endpoints use Server-Sent Events for real-time token streaming
- Proxy pattern: Many routes proxy to external services (Cloudflare, pentest daemons, OpenClaw)
- Multi-node fan-out: Pentest
[...path] route forwards to one or both daemon nodes based on ?node= param
- Input sanitization: OpenClaw management routes strip shell metacharacters before relay execution
