All admin endpoints are under /api/v1/admin/. When admin authentication is enabled, requests must include a valid bearer token or API key.
Method Path Description
POST /api/v1/admin/channelsCreate channel (as draft) GET /api/v1/admin/channelsList channels. Filter with ?status=, ?channel_type=, ?protocol= GET /api/v1/admin/channels/{id}Get channel by ID PUT /api/v1/admin/channels/{id}Update draft channel DELETE /api/v1/admin/channels/{id}Delete channel (all versions) PATCH /api/v1/admin/channels/{id}/statusChange status (active/archived) GET /api/v1/admin/channels/{id}/versionsList channel version history POST /api/v1/admin/channels/{id}/versionsCreate new draft version from active channel
Method Path Description
POST /api/v1/admin/workflowsCreate workflow (as draft; optional id field for custom IDs) GET /api/v1/admin/workflowsList workflows. Filter with ?tag=, ?status= GET /api/v1/admin/workflows/{id}Get workflow by ID PUT /api/v1/admin/workflows/{id}Update draft workflow DELETE /api/v1/admin/workflows/{id}Delete workflow (all versions) PATCH /api/v1/admin/workflows/{id}/statusChange status (active/archived) GET /api/v1/admin/workflows/{id}/versionsList workflow version history POST /api/v1/admin/workflows/{id}/versionsCreate new draft version from active workflow PATCH /api/v1/admin/workflows/{id}/rolloutUpdate rollout percentage POST /api/v1/admin/workflows/{id}/testDry-run on sample payload POST /api/v1/admin/workflows/importBulk import workflows (as drafts) GET /api/v1/admin/workflows/exportExport workflows. Filter with ?tag=, ?status= POST /api/v1/admin/workflows/validateValidate workflow definition
Method Path Description
POST /api/v1/admin/connectorsCreate connector GET /api/v1/admin/connectorsList connectors (secrets masked) GET /api/v1/admin/connectors/{id}Get connector by ID (secrets masked) PUT /api/v1/admin/connectors/{id}Update connector DELETE /api/v1/admin/connectors/{id}Delete connector POST /api/v1/admin/connectors/reloadReload all connectors from DB GET /api/v1/admin/connectors/circuit-breakersList circuit breaker states POST /api/v1/admin/connectors/circuit-breakers/{key}Reset a circuit breaker
Method Path Description
GET /api/v1/admin/engine/statusEngine status (version, uptime, workflows count, channels) POST /api/v1/admin/engine/reloadHot-reload channels and workflows
Method Path Description
GET /api/v1/admin/audit-logsList audit log entries. Filter with ?action=, ?resource_type=
Method Path Description
POST /api/v1/admin/backupExport database backup POST /api/v1/admin/restoreRestore from backup
Both channels and workflows follow a draft → active → archived lifecycle:
Create: entities are created as draft (not loaded into the engine)Update: only draft versions can be updated via PUTActivate: PATCH /status with {"status": "active"} loads the entity into the engineNew version: POST /versions creates a new draft version from the active entityArchive: PATCH /status with {"status": "archived"} removes from the engine
A channel links to a workflow via workflow_id. Activating a channel makes it available for data processing; activating a workflow makes its logic available to the engine.
Admin API endpoints support bearer token or API key authentication when enabled:
# Bearer token (default header: Authorization)
curl -H "Authorization: Bearer your-secret-key" \
http://localhost:8080/api/v1/admin/workflows
# API key via custom header
curl -H "X-API-Key: your-secret-key" \
http://localhost:8080/api/v1/admin/workflows
Configure via [admin_auth] in config or ORION_ADMIN_AUTH__ENABLED=true environment variable.
All error responses follow a consistent structure:
{
"error": {
"code": "NOT_FOUND",
"message": "Workflow with id '...' not found"
}
}
Code HTTP Status Description
NOT_FOUND404 Resource not found BAD_REQUEST400 Invalid input UNAUTHORIZED401 Missing or invalid credentials FORBIDDEN403 Access denied CONFLICT409 Duplicate or conflicting state RATE_LIMITED429 Too many requests TIMEOUT504 Workflow execution exceeded timeout SERVICE_UNAVAILABLE503 Backpressure or circuit breaker open UNSUPPORTED_MEDIA_TYPE415 Invalid content type INTERNAL_ERROR500 Internal server error