API Reference
Every endpoint SaaSyBase exposes — grouped by domain, with auth requirements, rate-limit tiers, request/response shapes, and a changelog of recent contract updates.
190 endpoints across 27 categories
Authentication
Register, sign in, verify email, and reset passwords across the self-hosted auth lanes. Availability depends on the active auth provider for each route.
POST
/api/auth/registerRegister a new userPUBLIC
PUBLIC
POST
/api/auth/credentials-loginSign in with email and passwordPUBLIC
PUBLIC
POST
/api/auth/login-statusCheck whether credentials can sign inPUBLIC
PUBLIC
POST
/api/auth/magic-linkRequest Better Auth magic-link sign-inPUBLIC
PUBLIC
POST
/api/auth/verify-emailVerify email addressAUTH
AUTH
GET
/api/auth/verify-emailComplete email verification linkPUBLIC
PUBLIC
POST
/api/auth/forgot-passwordRequest password resetPUBLIC
PUBLIC
POST
/api/auth/reset-passwordReset password with tokenPUBLIC
PUBLIC
POST
/api/auth/resend-verificationResend verification emailPUBLIC
PUBLIC
Public & account utilities
Health checks, contact form, and authenticated self-service account endpoints used by the dashboard.
GET
/api/healthHealth checkPUBLIC
PUBLIC
POST
/api/contactSubmit contact formPUBLIC
PUBLIC
GET
/api/settings/formatRead public format preferencesPUBLIC
PUBLIC
GET
/api/site-infoRead site branding infoPUBLIC
PUBLIC
GET
/api/plan-previewDeprecated plan preview placeholderPUBLIC
PUBLIC
GET
/api/billing/testDeprecated billing test placeholderPUBLIC
PUBLIC
POST
/api/fix-statusDeprecated status fix placeholderPUBLIC
PUBLIC
GET
/api/minimalMinimal health stubPUBLIC
PUBLIC
GET
/api/user/export-account-dataDownload account dataAUTH
AUTH
DELETE
/api/user/delete-accountDelete my accountAUTH
AUTH
GET
/api/user/profileGet current user profileAUTH
AUTH
User management
Fetch users, elevate access, adjust token balances, and inspect payment history without leaving the dashboard.
GET
/api/admin/usersList usersADMIN
ADMIN
GET
/api/admin/users/searchSearch users (typeahead)ADMIN
ADMIN
GET
/api/admin/users/[userId]Get user detailsADMIN
ADMIN
PATCH
/api/admin/users/[userId]Perform a user admin actionADMIN
ADMIN
DELETE
/api/admin/users/[userId]Delete a userADMIN
ADMIN
GET
/api/admin/users/[userId]/paymentsInspect user paymentsADMIN
ADMIN
PATCH
/api/admin/users/[userId]/roleChange user roleADMIN
ADMIN
Payments & refunds
Manage invoices, trigger refunds, and backfill historical events.
GET
/api/admin/paymentsList paymentsADMIN
ADMIN
POST
/api/admin/payments/[paymentId]/refundRefund a payment (full refund)ADMIN
ADMIN
POST
/api/admin/payments/backfill-invoicesBackfill Stripe external payment IDsADMIN
ADMIN
Plans & subscriptions
Create, activate, and audit subscription plans across the catalog.
GET
/api/admin/plansList subscription plansADMIN
ADMIN
POST
/api/admin/plansCreate planADMIN
ADMIN
PATCH
/api/admin/plans/[planId]Toggle plan active flagADMIN
ADMIN
PUT
/api/admin/plans/[planId]Update plan metadataADMIN
ADMIN
DELETE
/api/admin/plans/[planId]Delete planADMIN
ADMIN
POST
/api/admin/plans/[planId]/create-stripeCreate provider price for a planADMIN
ADMIN
POST
/api/admin/plans/verifyVerify a provider price IDADMIN
ADMIN
Support & notifications
Drive the helpdesk, reply to tickets, and broadcast announcements.
GET
/api/support/ticketsList my support ticketsAUTH
AUTH
POST
/api/support/ticketsCreate support ticketAUTH
AUTH
GET
/api/support/tickets/[ticketId]Get my support ticketAUTH
AUTH
PATCH
/api/support/tickets/[ticketId]Close my support ticketAUTH
AUTH
POST
/api/support/tickets/[ticketId]/replyReply to my ticketAUTH
AUTH
GET
/api/admin/support/ticketsList support tickets (admin)ADMIN
ADMIN
POST
/api/admin/support/ticketsCreate ticket on behalf of a userADMIN
ADMIN
GET
/api/admin/support/tickets/[ticketId]Get support ticket (admin)ADMIN
ADMIN
PATCH
/api/admin/support/tickets/[ticketId]Update ticket status (admin)ADMIN
ADMIN
POST
/api/admin/support/tickets/[ticketId]/replyReply to ticket (admin)ADMIN
ADMIN
Team & organizations
Provision team workspaces, manage invites, and adjust shared-token settings.
GET
/api/team/summaryTeam dashboard summaryAUTH
AUTH
GET
/api/user/active-orgGet active workspace stateAUTH
AUTH
POST
/api/user/active-orgSet or clear the active workspaceAUTH
AUTH
POST
/api/team/provisionProvision a team workspaceAUTH
AUTH
PATCH
/api/team/settingsUpdate workspace shared-token capsAUTH
AUTH
GET
/api/organization/check-deletion-eligibilityCheck whether a workspace can be deletedAUTH
AUTH
DELETE
/api/organization/deleteDelete a team workspaceAUTH
AUTH
PATCH
/api/team/members/cap-overrideOverride a member shared-token capAUTH
AUTH
POST
/api/team/inviteInvite a memberAUTH
AUTH
POST
/api/team/invite/acceptAccept inviteAUTH
AUTH
POST
/api/team/invite/declineDecline invitePUBLIC
PUBLIC
POST
/api/team/invite/resendResend invite emailAUTH
AUTH
POST
/api/team/invite/revokeRevoke inviteAUTH
AUTH
POST
/api/team/members/removeRemove a memberAUTH
AUTH
Checkout
Initiate checkouts and confirm completion across payment providers.
POST
/api/checkoutCreate hosted checkout sessionAUTH
AUTH
GET
/api/checkout/confirmConfirm checkout completionAUTH
AUTH
GET
/api/checkout/embeddedCreate embedded checkout intent (or redirect)AUTH
AUTH
POST
/api/checkout/embeddedCreate embedded checkout intent (or redirect)AUTH
AUTH
GET
/api/checkout/embedded/confirmConfirm embedded checkoutAUTH
AUTH
Billing & subscriptions
Manage billing portal access, cancellations, invoices, and subscription lifecycle (including proration upgrades).
POST
/api/billing/customer-portalOpen customer billing portalAUTH
AUTH
POST
/api/billing/cancelSchedule cancellation at period endAUTH
AUTH
POST
/api/billing/undo-cancelUndo scheduled cancellationAUTH
AUTH
GET
/api/billing/invoice/[paymentId]Download invoice PDFAUTH
AUTH
GET
/api/billing/refund-receipt/[paymentId]Download refund receipt PDFAUTH
AUTH
GET
/api/subscriptionGet subscription statusAUTH
AUTH
POST
/api/subscription/activateActivate a pending subscriptionAUTH
AUTH
GET
/api/subscription/prorationPreview proration (recurring plan swap)AUTH
AUTH
POST
/api/subscription/prorationApply proration (recurring plan swap)AUTH
AUTH
GET
/api/admin/subscriptionsList subscriptions (admin/moderator)ADMIN
ADMIN
POST
/api/admin/subscriptions/[id]/schedule-cancelSchedule cancellation (admin)ADMIN
ADMIN
POST
/api/admin/subscriptions/[id]/undoUndo cancellation (admin)ADMIN
ADMIN
POST
/api/admin/subscriptions/[id]/force-cancelForce cancel immediately (admin)ADMIN
ADMIN
POST
/api/admin/subscriptions/[id]/expireExpire subscription (admin)ADMIN
ADMIN
POST
/api/admin/subscriptions/[id]/editEdit subscription state and billing dateADMIN
ADMIN
POST
/api/admin/billing/syncSync billing catalog (admin)ADMIN
ADMIN
GET
/api/admin/billing/paddle-configPaddle config health check (admin)ADMIN
ADMIN
Organizations (admin)
Inspect and administer organization workspaces: seat limits, token pooling policies, and membership caps.
GET
/api/admin/organizationsList organizationsADMIN
ADMIN
GET
/api/admin/organizations/[orgId]Get organization detailADMIN
ADMIN
POST
/api/admin/organizations/[orgId]/suspendSuspend organization accessADMIN
ADMIN
PATCH
/api/admin/organizations/[orgId]Update organizationADMIN
ADMIN
GET
/api/admin/organizations/[orgId]/membersList organization members + invitesADMIN
ADMIN
DELETE
/api/admin/organizations/[orgId]/members/[membershipId]Remove member from organizationADMIN
ADMIN
POST
/api/admin/organizations/[orgId]/adjust-balanceAdjust organization token balanceADMIN
ADMIN
DELETE
/api/admin/organizations/[orgId]/deleteDelete organizationADMIN
ADMIN
Notifications
User inbox notifications and admin broadcast tooling.
GET
/api/notificationsList my notificationsAUTH
AUTH
POST
/api/notifications/mark-all-readMark all notifications readAUTH
AUTH
PATCH
/api/notifications/[id]/readMark a notification readAUTH
AUTH
POST
/api/notifications/[id]/readMark a notification readAUTH
AUTH
GET
/api/admin/notificationsList notifications (admin/moderator)ADMIN
ADMIN
POST
/api/admin/notifications/createCreate notification (admin/moderator)ADMIN
ADMIN
Emails (admin)
Manage stored email templates and send test emails using rendered variables.
GET
/api/admin/emailsList email templatesADMIN
ADMIN
POST
/api/admin/emailsCreate email templateADMIN
ADMIN
GET
/api/admin/emails/[templateId]Get email templateADMIN
ADMIN
PATCH
/api/admin/emails/[templateId]Update email templateADMIN
ADMIN
DELETE
/api/admin/emails/[templateId]Delete email templateADMIN
ADMIN
POST
/api/admin/emails/seedSeed default templatesADMIN
ADMIN
POST
/api/admin/emails/testSend test emailADMIN
ADMIN
Payment providers
Inspect supported payment providers and configuration status without exposing secrets.
GET
/api/admin/payment-providersList payment providers + configuration statusADMIN
ADMIN
Content (pages & blog)
Create and manage site pages, blog posts, and blog categories.
GET
/api/admin/pagesList site pagesADMIN
ADMIN
POST
/api/admin/pagesCreate site pageADMIN
ADMIN
GET
/api/admin/pages/[id]Read site pageADMIN
ADMIN
PUT
/api/admin/pages/[id]Update site page (replace fields)ADMIN
ADMIN
PATCH
/api/admin/pages/[id]Update site page (partial)ADMIN
ADMIN
DELETE
/api/admin/pages/[id]Trash site pageADMIN
ADMIN
POST
/api/admin/pages/bulkBulk page action (trash/restore/delete)ADMIN
ADMIN
GET
/api/admin/blogList blog postsADMIN
ADMIN
POST
/api/admin/blogCreate blog postADMIN
ADMIN
GET
/api/admin/blog/[id]Read blog postADMIN
ADMIN
PUT
/api/admin/blog/[id]Update blog post (replace fields)ADMIN
ADMIN
PATCH
/api/admin/blog/[id]Update blog post (partial)ADMIN
ADMIN
DELETE
/api/admin/blog/[id]Trash blog postADMIN
ADMIN
POST
/api/admin/blog/bulkBulk blog action (trash/restore/delete)ADMIN
ADMIN
GET
/api/admin/blog/categoriesList blog categoriesADMIN
ADMIN
POST
/api/admin/blog/categoriesCreate blog categoryADMIN
ADMIN
PATCH
/api/admin/blog/categories/[id]Update blog categoryADMIN
ADMIN
DELETE
/api/admin/blog/categories/[id]Delete blog categoryADMIN
ADMIN
Coupons
Create and manage discount coupons, including provider artifacts and redemption safety rules.
GET
/api/admin/couponsList couponsADMIN
ADMIN
POST
/api/admin/couponsCreate couponADMIN
ADMIN
PUT
/api/admin/coupons/[couponId]Update coupon (limited fields)ADMIN
ADMIN
DELETE
/api/admin/coupons/[couponId]Delete couponADMIN
ADMIN
One-time purchases (admin)
Inspect and manage non-recurring purchases; supports refund + forced expiry flows.
GET
/api/admin/purchasesList one-time purchasesADMIN
ADMIN
POST
/api/admin/purchases/[id]/[action]Refund a purchaseADMIN
ADMIN
POST
/api/admin/purchases/[id]/expireExpire a purchase subscriptionADMIN
ADMIN
Files & uploads (admin)
Upload and manage images/assets used by the dashboard and marketing pages.
GET
/api/admin/file/listList uploaded admin filesADMIN
ADMIN
POST
/api/admin/file/uploadUpload an image fileADMIN
ADMIN
DELETE
/api/admin/file/deleteDelete an uploaded admin fileADMIN
ADMIN
POST
/api/admin/logo/uploadLegacy logo upload endpoint (moved)ADMIN
ADMIN
POST
/api/admin/uploadLegacy form-data upload (deprecated)ADMIN
ADMIN
Theme & branding (admin)
Manage theme links, footer text, and injected custom code snippets.
GET
/api/admin/themeRead theme settingsADMIN
ADMIN
PUT
/api/admin/themeUpdate theme settingsADMIN
ADMIN
GET
/api/admin/theme/exportExport theme settingsADMIN
ADMIN
POST
/api/admin/theme/importImport theme settingsADMIN
ADMIN
Maintenance & operations (admin)
Operational helpers for internal cache inspection and cleanup tasks.
GET
/api/admin/maintenance/discounted-subscription-price-cacheInspect discounted subscription price cacheADMIN
ADMIN
POST
/api/admin/maintenance/discounted-subscription-price-cacheClean discounted subscription price cacheADMIN
ADMIN
Logs & audit (admin)
Inspect server logs and administrator/moderator actions for operational debugging and compliance.
GET
/api/admin/logsList system logsADMIN
ADMIN
DELETE
/api/admin/logsClear system logsADMIN
ADMIN
GET
/api/admin/moderator-actionsList admin/moderator actions (admin only)ADMIN
ADMIN
DELETE
/api/admin/moderator-actionsClear admin/moderator action log (admin only)ADMIN
ADMIN
Configuration & preferences
Read and update global settings, plus user preference storage.
GET
/api/admin/settingsRead a setting by keyADMIN
ADMIN
GET
/api/admin/settings/exportExport settings snapshotADMIN
ADMIN
POST
/api/admin/settings/importImport settings snapshotADMIN
ADMIN
POST
/api/admin/settingsSet a setting (cache-aware)ADMIN
ADMIN
PATCH
/api/admin/settingsUpsert a setting (direct DB)ADMIN
ADMIN
GET
/api/user/settingsList user settingsAUTH
AUTH
PATCH
/api/user/settingsUpdate a user settingAUTH
AUTH
GET
/api/settings/tokensRead token reset policy flagsPUBLIC
PUBLIC
Account & entitlements
Fetch current-user profile, token balances, and entitlement checks used by the app runtime.
POST
/api/internal/spend-tokensSpend/deduct tokens (internal, server-to-server)INTERNAL
INTERNAL
GET
/api/user/profileFetch current user profile + token balancesAUTH
AUTH
PATCH
/api/user/profileUpdate current user profileAUTH
AUTH
GET
/api/user/active-orgGet active workspace selectionAUTH
AUTH
POST
/api/user/active-orgSet active workspace selectionAUTH
AUTH
POST
/api/user/change-passwordChange passwordAUTH
AUTH
DELETE
/api/user/pending-email-changeCancel pending email changeAUTH
AUTH
GET
/api/user/sessionsList current user sessionsAUTH
AUTH
GET
/api/user/grace-statusCheck paid-token expiry grace windowAUTH
AUTH
POST
/api/user/ping-expiry-cleanupTrigger lazy paid-token cleanup checkAUTH
AUTH
POST
/api/user/validate-org-accessValidate workspace access against owner planAUTH
AUTH
POST
/api/user/spend-tokensSpend tokens for user actionsAUTH
AUTH
GET
/api/internal/payment-scriptsResolve active payment provider scriptsINTERNAL
INTERNAL
POST
/api/internal/track-visitRecord a visit log entryINTERNAL
INTERNAL
POST
/api/user/welcomeSend welcome email (idempotent)AUTH
AUTH
DELETE
/api/user/delete-accountDelete current user data (DB only)AUTH
AUTH
Sessions & security
Inspect and revoke active auth sessions for the signed-in user when the active auth provider supports session management.
GET
/api/sessions/[sessionId]Get session detailAUTH
AUTH
POST
/api/sessions/[sessionId]/revokeRevoke one sessionAUTH
AUTH
POST
/api/sessions/revoke-othersRevoke all other sessionsAUTH
AUTH
GET
/api/recent-sessionsDeprecated recent sessions placeholderAUTH
AUTH
POST
/api/sessions/[sessionId]Deprecated session detail aliasAUTH
AUTH
GET
/api/sessions/[sessionId]/revokeDeprecated session revoke aliasAUTH
AUTH
GET
/api/sessions/revoke-othersDeprecated revoke-others aliasAUTH
AUTH
Dashboard utilities
Signed-in user helpers for redeemed coupons and payment history shown in the dashboard UI.
GET
/api/dashboard/couponsList my redeemed couponsAUTH
AUTH
POST
/api/dashboard/couponsRedeem couponAUTH
AUTH
GET
/api/dashboard/paymentsList my paymentsAUTH
AUTH
Analytics & traffic
Query revenue, subscriber, and engagement dashboards programmatically.
GET
/api/admin/analyticsAnalytics snapshotADMIN
ADMIN
GET
/api/admin/trafficTraffic snapshotADMIN
ADMIN
GET
/api/admin/traffic?group=devicesTraffic breakdownADMIN
ADMIN
Webhook ingress
Inbound webhook endpoints for payments and auth providers. All payment webhooks enforce signature verification and shared routing behavior.
POST
/api/webhooks/paymentsUnified payments webhook routerPUBLIC
PUBLIC
POST
/api/webhooks/stripeStripe webhook ingressPUBLIC
PUBLIC
POST
/api/webhooks/paystackPaystack webhook ingressPUBLIC
PUBLIC
POST
/api/webhooks/paddlePaddle webhook ingressPUBLIC
PUBLIC
POST
/api/webhooks/clerkClerk webhook ingressPUBLIC
PUBLIC
POST
/api/stripe/webhookLegacy Stripe webhook aliasPUBLIC
PUBLIC
Cron & lifecycle jobs
Privileged maintenance endpoints intended for scheduled jobs and internal automation.
GET
/api/cron/demo-refreshRefresh demo dataset timestamps and activity windowsINTERNAL
INTERNAL
GET
/api/cron/process-expiryProcess subscription expiry and org cleanupINTERNAL
INTERNAL
API changelog
Recent API contract and reference updates reflected on this page.
- Version 2026.05.05May 5, 2026, 12:00 AM
- Added curated docs for GET /api/organization/check-deletion-eligibility and DELETE /api/organization/delete.
- Expanded team API coverage for GET/POST /api/user/active-org, including personal-workspace clearing after organization deletion.
- Documented the team-dashboard organization deletion flow, including active-plan gating inside the confirmation modal.
- Version 2026.04.16Apr 16, 2026, 12:00 AM
- Added admin organization suspension endpoint coverage and documented suspended-workspace response fields.
- Expanded admin user endpoint docs to include suspension state and the new setSuspension/clearSuspension actions.
- Updated organization billingEmail docs to note owner-email fallback when no dedicated billing inbox is stored.
- Version 2026.04Apr 6, 2026, 12:00 AM
- Audited curated request, response, and auth notes against the live route handlers and corrected drift.
- Updated shared authentication guidance to describe provider-aware sessions instead of Clerk-specific behavior.
- Refreshed health, refund, and internal token-spend entries to match current response shapes, rate limits, and auth outcomes.
- This changelog now tracks API-reference changes only; broader product release notes belong in the app changelog.
- Version 2026.02Feb 7, 2026, 12:00 AM
- Added internal server-to-server token spend endpoint (POST /api/internal/spend-tokens).
- Added user token spend endpoint for SaaSyApp (POST /api/user/spend-tokens).
- Expanded token-spend coverage in the reference to distinguish browser and server-to-server callers.
- Expanded curated docs for token/account endpoints to reduce inventory drift.
- Hardened legacy admin upload endpoint (API admin guard + rate limiting).
- API docs UI: body schema rows wrap cleanly on narrow screens.
- Version 2025.09Sep 20, 2025, 12:00 AM
- Traffic API now exposes breakdown pagination.
- Notification broadcasts support INFO | SUCCESS | WARNING | ERROR types.
- Version 2025.07Jul 12, 2025, 12:00 AM
- User PATCH endpoint adds assignPlan action.
- Payments backfill can repair missing Stripe payment_intent IDs.